Skip to main content

Question

 Iñaki Ruiz Acosta (Iñaki Ruiz)
Vodafone Espana SA

Vodafone Espana SA
ES
Iñaki Ruiz Member since 2019 12 posts
Vodafone Espana SA
Posted: 1 week ago
Last activity: 1 week ago
Posted: 29 Oct 2025 6:33 EDT
Last activity: 29 Oct 2025 6:33 EDT

CAD-C45250: CHVFES - Action required: DOMPurify Cross-Site Scripting - CVE-2024-47875

Hello team, 

We have received the CAD-C45250 about DOMPurify vulnerability, but we are not sure how to check if our version 23.1.4 is affected.

Please, anyone could help us to identify what is the version of DOMPurify that we have in our platform version?

What does this patch 23.1.5 fixes, and what kind of tests could we run after installing it to ensure we don't impact the existing functionalities that we have?

Regards.

To see attachments, please log in.
Pega Platform '23.1.4
Pega Platform

  • Reply

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice