CNNVD-202510-2340 Information
Oct 16, 2025
cve
CNNVD ID
CNNVD-202510-2340
Related CVE
- CNNVD Published: 2025-10-16
Description (Chinese)
Pega Platform是美国Pega公司的一个企业管理平台。 Pega Platform 8.7.5版本至24.2.2版本存在安全漏洞,该漏洞源于用户界面组件中存在不安全的直接对象引用,可能导致数据读取。
Description (English)
Pega Platform is an enterprise management platform for the United States company Pega. There is a security loophole between versions 8.7.5 and 24.2.2 in Pega Platform, which stems from the presence of unsafe direct object references in user interface components, which may lead to data reading.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Pega
Published
2025-10-16
Last Modified
2026-02-24
References
https://support.pega.com/support-doc/pega-security-advisory-h25-vulnerability-remediation-note
Patch
https://support.pega.com/support-doc/pega-security-advisory-h25-vulnerability-remediation-note
Share on: