Codebeamer
by Ptc
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-3951 | Hig | 0.46 | 7.1 | 0.00 | May 8, 2024 | PTC Codebeamer is vulnerable to a cross site scripting vulnerability that could allow an attacker to inject and execute malicious code. | ||
| CVE-2023-4296 | 0.00 | — | 0.01 | Aug 29, 2023 | If an attacker tricks an admin user of PTC Codebeamer into clicking on a malicious link, it may allow the attacker to inject arbitrary code to be executed in the browser on the target device. | |||
| CVE-2019-20635 | 0.00 | — | 0.01 | Apr 2, 2020 | codeBeamer before 9.5.0-RC3 does not properly restrict the ability to execute custom Java code and access the Java class loader via computed fields. |
- risk 0.46cvss 7.1epss 0.00
PTC Codebeamer is vulnerable to a cross site scripting vulnerability that could allow an attacker to inject and execute malicious code.
- CVE-2023-4296Aug 29, 2023risk 0.00cvss —epss 0.01
If an attacker tricks an admin user of PTC Codebeamer into clicking on a malicious link, it may allow the attacker to inject arbitrary code to be executed in the browser on the target device.
- CVE-2019-20635Apr 2, 2020risk 0.00cvss —epss 0.01
codeBeamer before 9.5.0-RC3 does not properly restrict the ability to execute custom Java code and access the Java class loader via computed fields.