Security Advisory

CVE-2026-1078

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-07 15:04:32

Last updated 2026-04-07 19:59:49

Assigner Pega

State PUBLISHED

Description

An arbitrary file-write vulnerability in Pega Browser Extension (PBE) affects Pega Robotic Automation version 22.1 or R25 users who are running automations that work with Google Chrome or Microsoft Edge. A bad actor could create a website that includes malicious code. The vulnerability could occur if a Robot Runtime user navigates to the malicious website.

← Browse all CVEs View on cve.org ↗