VYPR
Low severity3.4NVD Advisory· Published Mar 31, 2026· Updated Apr 3, 2026

CVE-2025-62184

CVE-2025-62184

Description

Pega Platform versions 8.1.0 through 25.1.0 are affected by a Stored Cross-site Scripting vulnerability in a user interface component. Requires an administrative user and given extensive access rights, impact to Confidentiality is low and Integrity is none.

Affected products

2
  • cpe:2.3:a:pega:pega_platform:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:pega:pega_platform:*:*:*:*:*:*:*:*range: >=8.1,<=25.1.0
    • (no CPE)range: >=8.1.0, <=25.1.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.