CVE-2022-35656

Summary

Pega Platform from 8.3 to 8.7.3 vulnerability may allow authenticated security administrators to alter CSRF settings directly.

Affected Software

VendorProductVersion RangeStatus
PegasystemsPega Infinity8.3 < unspecifiedaffected
PegasystemsPega Infinityunspecified < 8.7.3affected

Weaknesses

  • CWE-352: CWE-352: Cross-Site Request Forgery

ADP Enrichment

CVE Program Container

Additional References

References