CVE-2026-9024EPSS p9.7%

CVE-2026-9024CVE-2026-9024

Description

A Stored Cross-site Scripting (XSS) vulnerability affecting Process Experience Studio in DELMIA Service Process Engineer from Release 3DEXPERIENCE R2024x through Release 3DEXPERIENCE R2026x could allow an attacker to execute arbitrary script code in user's browser session.

Scoring

CVSS 8.7 ()
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N
EPSS0.20% probability of exploitation · percentile 9.7% · 2026-06-19T12:03:05Z
Last modified2026-06-01

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-10555
CVE
CVE-2025-4992
CVE
CVE-2025-4986
CVE
CVE-2025-4990
CVE
CVE-2025-4988
CVE
CVE-2025-4989
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.