How to fix CVE-2026-1078?

Within 24 hours: Inventory all Pega Robotic Automation installations (versions 22.1 and R25) and identify systems where Robot Runtime operates with browser extensions enabled. Restrict affected users' ability to browse untrusted websites during active automation sessions. Within 7 days: Document current browser extension versions and disable the Pega Browser Extension on non-critical systems pending vendor patch availability; communicate patch timeline expectations to Pega support. Within 30 days: Establish a vendor patch monitoring process and prepare a deployment plan once Pega releases a fixed version; consider alternative RPA execution environments or sandboxed browser instances as interim alternatives.

Is Google affected by CVE-2026-1078?

CVE-2026-1078 affects Pega Robotic Automation users via a browser extension vulnerability that enables arbitrary file writes when users visit malicious websites during automation tasks.

CVE-2026-1078

EUVD-2026-19638 HIGH

2026-04-07 Pega

7.2

CVSS 4.0

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:H/VA:H/SC:N/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Scope

Lifecycle Timeline

EUVD ID Assigned

Apr 07, 2026 - 15:30 euvd

EUVD-2026-19638

Analysis Generated

Apr 07, 2026 - 15:30 vuln.today

CVE Published

Apr 07, 2026 - 15:04 nvd

HIGH 7.2

Description

An arbitrary file-write vulnerability in Pega Browser Extension (PBE) affects Pega Robotic Automation version 22.1 or R25 users who are running automations that work with Google Chrome or Microsoft Edge. A bad actor could create a website that includes malicious code. The vulnerability could occur if a Robot Runtime user navigates to the malicious website.

Analysis

Arbitrary file write in Pega Browser Extension allows remote attackers to compromise system integrity when Robot Runtime users visit malicious websites while running automations in Chrome or Edge. Affects Pega Robotic Automation versions 22.1 and R25. …

Remediation

Within 24 hours: Inventory all Pega Robotic Automation installations (versions 22.1 and R25) and identify systems where Robot Runtime operates with browser extensions enabled. Restrict affected users' ability to browse untrusted websites during active automation sessions. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.0

CVSS: +36

POC: 0

CVE-2026-1078 vulnerability details – vuln.today

Back

CVE-2026-1078

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Analysis

Full analysis requires sign-in

Priority Score

Share

CVE-2026-1078

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Full analysis requires sign-in

Priority Score

Share

External POC / Exploit Code