CNNVD-202512-993 Information

CNNVD ID

CNNVD-202512-993

Related CVE

CVE-2025-12956

• CNNVD Published: 2025-12-08

Description (Chinese)

Dassault Systèmes ENOVIA Collaborative Industry Innovator是法国达索系统（Dassault Systèmes）公司的一个工程团队进行实时、安全和结构化协作和产品内容管理的重要工具集。 Dassault Systèmes ENOVIA Collaborative Industry Innovator R2022x版本至R2025x版本存在安全漏洞，该漏洞源于反射型跨站脚本，可能导致执行任意脚本。

Description (English)

Dassault Systèmes ENOVIA Corporation Industry Innovator is an important set of real-time, secure and structured collaborations and product content management tools for an engineering team from the French company Dassault Systèmes. Dassault Systèmes ENOVIA Cooperative Industry Innovator R2022x to R2025x has a security loophole, which originates in reflective cross-site scripts and may lead to the execution of random scripts.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Dassault Systèmes

Published

2025-12-08

Last Modified

2026-02-24

References

https://www.3ds.com/trust-center/security/security-advisories/cve-2025-12956

Patch

https://www.3ds.com/support/software-downloads