CVE-2025-0598

Summary

CVE-2025-0598 is a stored Cross-site Scripting (XSS) vulnerability affecting Relations in Dassault Systèmes ENOVIA Collaborative Industry Innovator versions R2023x through R2024x. this issue enables attackers to inject malicious scripts into the affected system, which are then executed in the user's browser session. As a result, an attacker can gain unauthorized access to sensitive information or take control of the user's account. This vulnerability poses a significant risk, particularly for organizations that rely on ENOVIA for critical business operations. Users are strongly advised to update their systems as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.