Fides: DOM-based XSS vulnerability in fides.js via fides_description override
CVE-2026-44541
7HIGH
What is CVE-2026-44541?
Fides is an open-source privacy engineering platform. From version 2.33.0 to before version 2.84.5, there is a DOM-based XSS vulnerability in fides.js via the fides_description override. This issue has been patched in version 2.84.5.
Affected Version(s)
fides >= 2.33.0, < 2.84.5