CVE-2026-0898

UNKNOWN 0.0

An arbitrary file-write vulnerability in Pega Browser Extension (PBE) affects Pega Robot Studio developers who are automating Google Chrome and Microsoft Edge using either version 22.1 or R25.

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

12th

An arbitrary file-write vulnerability in Pega Browser Extension (PBE) affects Pega Robot Studio developers who are automating Google Chrome and Microsoft Edge using either version 22.1 or R25. This vulnerability does not affect Robot Runtime users. A bad actor could create a website that includes malicious code. The vulnerability may be exploited if a Pega Robot Studio developer is deceived into visiting this website during interrogation mode in Robot Studio.

CWE	CWE-284
Vendor	pegasystems
Product	pega robot studio
Published	Mar 23, 2026
Last Updated	Mar 24, 2026

Stay Ahead of the Next One

Get instant alerts for pegasystems pega robot studio

Be the first to know when new unknown vulnerabilities affecting pegasystems pega robot studio are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Pegasystems / Pega Robot Studio

22.1 R25

References

NVD ↗ CVE.org ↗ EPSS Data ↗

support.pega.com: https://support.pega.com/support-doc/pega-security-advisory-p25-vulnerability-remediation-note

Credits

Ramon Dunker from Achmea, Security Assessment Team