Unrated severityNVD Advisory· Published Nov 24, 2025· Updated Nov 24, 2025
Stored Cross-site Scripting (XSS) vulnerability affecting Requirements in ENOVIA Product Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x
CVE-2025-10554
Description
A stored Cross-site Scripting (XSS) vulnerability affecting Requirements in ENOVIA Product Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
23DEXPERIENCE R2023x through 3DEXPERIENCE R2025x+ 1 more
- (no CPE)range: 3DEXPERIENCE R2023x through 3DEXPERIENCE R2025x
- (no CPE)range: Release 3DEXPERIENCE R2023x Golden
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.