CVE-2024-0935

Summary

Insertion of Sensitive Information into Log File vulnerabilities are affecting DELMIA Apriso Release 2019 through Release 2024

Affected Software

VendorProductVersion RangeStatus
Dassault SystèmesDELMIA AprisoApriso 2019 Golden <= Apriso 2019 SP5affected
Dassault SystèmesDELMIA AprisoApriso 2020 Golden <= Apriso 2020 SP4affected
Dassault SystèmesDELMIA AprisoApriso 2021 Golden <= Apriso 2021 SP3affected
Dassault SystèmesDELMIA AprisoApriso 2022 Golden <= Apriso 2022 SP3affected
Dassault SystèmesDELMIA AprisoApriso 2023 Golden <= Apriso 2023 SP2affected
Dassault SystèmesDELMIA AprisoApriso 2024 Goldenaffected

Weaknesses

  • CWE-532: CWE-532 Insertion of Sensitive Information into Log File

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References