CVE-2026-1564

Medium CVSS: 5.1

Pega Platform versions 8.1.0 through 25.1.1 are affected by an HTML Injection vulnerability in a user interface component. Requires a high privileged user with a developer role.

Vendor

Product

CWE

CWE-80

Yayın Tarihi

2026-04-15 22:16:51

Güncelleme

2026-04-17 15:38:09

Source Identifier

security@pega.com

KEV Date Added

Kategoriler

CWE-80 MEDIUM 2026

Referanslar

https://support.pega.com/support-doc/pega-security-advisory-b26-vulnerability-remediation-note