NVD CNA Status

This is not the latest report. Click here to view the latest report.

CVSS v3.1 Statistics for Pegasystems Inc. as of 08/11/2023

Total Number CVEs Submitted

Number of Metrics Compared

Acceptance Level Thresholds

Total Number CVEs Reviewed

Analyst Match Count

Reference

0-69.9%

Acceptance Level

Reference

Match Percent

83.3

Contributor

70-94.9%

Provider

95-100%

CVE	CNA Value	Alignment	NIST Value	Reason
CVE-2021-27653 (5 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) High	≠	Attack Complexity (AC) Low	No Race Condition, implementation specific secrets required or MiTM identified for NVD analyst
	Privileges Required (PR) High		Privileges Required (PR) High
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Unchanged		Scope (S) Unchanged
	Confidentiality (C) High		Confidentiality (C) High
	Integrity (I) High	≠	Integrity (I) None	No integrity impacts identified
	Availability (A) High	≠	Availability (A) None	No availability impacts identified
CVE-2023-28094 (7 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) High	≠	Attack Complexity (AC) Low
	Privileges Required (PR) None		Privileges Required (PR) None
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Unchanged		Scope (S) Unchanged
	Confidentiality (C) High		Confidentiality (C) High
	Integrity (I) High		Integrity (I) High
	Availability (A) High		Availability (A) High
CVE-2023-32090 (8 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) None		Privileges Required (PR) None
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Unchanged		Scope (S) Unchanged
	Confidentiality (C) High		Confidentiality (C) High
	Integrity (I) High		Integrity (I) High
	Availability (A) High		Availability (A) High