Plattform
javascript
Komponente
pega-browser-extension
Behoben in
3.1.45
CVE-2026-1079 describes a native messaging host vulnerability within the Pega Browser Extension (PBE), a component of Pega Robotic Automation. This flaw allows a malicious website to potentially trigger unexpected message box displays, impacting user experience and potentially leading to further exploitation. The vulnerability affects versions of PBE from 0.0.0 through 3.1.45, and a fix is available in version 3.1.45.
An attacker can leverage this vulnerability by crafting a malicious website containing code specifically targeting the Pega Browser Extension. When a user navigates to this compromised site, the malicious code can trigger the display of an unexpected message box. While the immediate impact might seem limited, this could be a precursor to more sophisticated attacks, such as phishing or the injection of malicious scripts. The potential for further exploitation depends on the permissions and access granted to the PBE within the user's browser environment. This vulnerability highlights the importance of carefully vetting browser extensions and the websites they interact with.
The exploitation context for CVE-2026-1079 is currently unclear. No public exploits or active campaigns have been reported. The vulnerability was published on 2026-04-07. The EPSS score is pending evaluation, and it is not listed on KEV. Monitor security advisories and threat intelligence feeds for any updates.
Organizations utilizing Pega Robotic Automation and its associated Pega Browser Extension are at risk. Specifically, users who frequently interact with external websites or those who have not recently updated their browser extensions are more vulnerable. Shared hosting environments where multiple users share the same browser instance could also amplify the risk.
• javascript / browser: Inspect browser extension permissions for unusual or excessive access requests. Monitor network traffic for suspicious connections originating from the Pega Browser Extension.
// Example: Check extension permissions in Chrome DevTools
chrome.permissions.getAll(function(permissions) {
console.log(permissions);
});disclosure
Exploit-Status
EPSS
0.05% (17% Perzentil)
CISA SSVC
The primary mitigation for CVE-2026-1079 is to immediately upgrade the Pega Browser Extension to version 3.1.45 or later. If upgrading is not immediately feasible, consider temporarily disabling the Pega Browser Extension within the browser settings. Additionally, implement strict website filtering policies to prevent users from accessing potentially malicious sites. Regularly review browser extension permissions and remove any extensions that are not essential. Monitor network traffic for suspicious activity related to the Pega Browser Extension.
Actualice la Pega Browser Extension (PBE) a la versión 3.1.45 o superior para mitigar la vulnerabilidad. Consulte la documentación de Pegasystems para obtener instrucciones detalladas sobre cómo actualizar la extensión y asegurar su entorno.
Schwachstellenanalysen und kritische Warnungen direkt in deinen Posteingang.
CVE-2026-1079 is a vulnerability in the Pega Browser Extension allowing malicious websites to trigger unexpected message boxes. It affects versions 0.0.0–3.1.45.
You are affected if you use Pega Robotic Automation and have the Pega Browser Extension installed in versions 0.0.0 through 3.1.45.
Upgrade the Pega Browser Extension to version 3.1.45 or later to resolve the vulnerability.
There are currently no publicly known active exploitation campaigns for CVE-2026-1079.
Please refer to the official Pega security advisory for detailed information and updates regarding CVE-2026-1079.
Lade deine Abhängigkeitsdatei hoch und erfahre sofort, ob dich diese und andere CVEs treffen.