GCVE - cpe:2.3:a:dassault_systèmes:product_manager:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:dassault_systèmes:product_manager:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Dassault Systèmes (`fe2f633c-7f99-5ffa-b416-2f518d032717`)
Product	Product Manager (`d85668a9-5912-5fa8-ac57-b06eed08b964`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-4990`	vulnerable	2026-06-03 15:01:49.133046	Stored Cross-site Scripting (XSS) vulnerability affecting Change Governance in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x HIGH (8.7) A stored Cross-site Scripting (XSS) vulnerability affecting Change Governance in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session. Published: 2025-05-30T14:16:51.792Z Updated: 2025-05-30T22:00:20.115Z Open on db.gcve.eu Reference links https://www.3ds.com/vulnerability/advisories	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-4989`	vulnerable	2026-06-03 15:01:49.132779	Stored Cross-site Scripting (XSS) vulnerability affecting Requirements in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x HIGH (8.7) A stored Cross-site Scripting (XSS) vulnerability affecting Requirements in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session. Published: 2025-05-30T14:19:03.554Z Updated: 2025-05-30T22:00:14.117Z Open on db.gcve.eu Reference links https://www.3ds.com/vulnerability/advisories	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-4986`	vulnerable	2026-06-03 15:01:49.130181	Stored Cross-site Scripting (XSS) vulnerability affecting Model Definition in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x HIGH (8.7) A stored Cross-site Scripting (XSS) vulnerability affecting Model Definition in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session. Published: 2025-05-30T14:19:21.517Z Updated: 2025-05-30T21:59:53.449Z Open on db.gcve.eu Reference links https://www.3ds.com/vulnerability/advisories	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.