hcltech

410 tracked vulnerabilities.

CVE-2023-50345 LOW
HCL DRYiCE MyXalytics - Open Redirect
Jan 03, 2024
CVSS 3.7
EPSS 0.00
CVE-2023-37520 HIGH
HCL BigFix Platform 9.5.12.68 - Unauthenticated Stored Cross-Site Scripting in Gather Status Report
Dec 21, 2023
CVSS 7.7
EPSS 0.00
CVE-2023-37519 HIGH
HCL BigFix Platform < 9.5.23 - Unauthenticated Stored Cross-Site Scripting in Download Status Report
Dec 21, 2023
CVSS 7.7
EPSS 0.00
CVE-2023-28025 MEDIUM
HCL BigFix Modern Client Management < 3.2 - Stored Cross-Site Scripting via SVG Tag Injection
Dec 21, 2023
CVSS 6.6
EPSS 0.00
CVE-2023-28022 LOW
HCL Connections - Information Disclosure via Improper Request Handling
Dec 15, 2023
CVSS 3.5
EPSS 0.01
CVE-2023-28017 MEDIUM
HCL Connections - Stored Cross-Site Scripting
Dec 07, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-37533 MEDIUM
HCL Connections - Reflected Cross-Site Scripting
Nov 09, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-37532 MEDIUM
HCL Commerce 9.1.8-9.1.13.2 - Path Traversal via Crafted URL
Oct 23, 2023
CVSS 5.8
EPSS 0.01
CVE-2023-37503 HIGH
HCL Compass 2.0.0-2.0.3 - Weak Password Requirements
Oct 19, 2023
CVSS 8.1
EPSS 0.00
CVE-2023-37504 HIGH
HCL Compass 2.0.0-2.0.3 - Insufficient Session Expiration
Oct 19, 2023
CVSS 7.1
EPSS 0.00
CVE-2023-37502 CRITICAL
HCL Compass 2.0.0-2.0.2 - Unrestricted Upload of File with Dangerous Type
Oct 18, 2023
CVSS 9.0
EPSS 0.00
CVE-2023-37537 HIGH
HCL AppScan Presence - Privilege Escalation
Oct 17, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-37538 CRITICAL
HCL Digital Experience - Reflected Cross-Site Scripting
Oct 11, 2023
CVSS 9.3
EPSS 0.00
CVE-2023-37536 HIGH
Xerces-C++ 3.2.3 - Integer Overflow via HTTP Request
Oct 11, 2023
CVSS 8.2
EPSS 0.01
CVE-2023-28010 MEDIUM
HCL Domino - Unauthorized Sensitive Information Exposure via Server Hostname
Sep 08, 2023
CVSS 4.0
EPSS 0.00
CVE-2023-37513 LOW
HCL Traveler To-Do < 12.0.6 - Sensitive Information Exposure via App Snapshot
Aug 11, 2023
CVSS 3.3
EPSS 0.00
CVE-2023-37512 LOW
HCL Traveler Companion < 12.0.6 - Sensitive Information Exposure via App Snapshot
Aug 11, 2023
CVSS 3.3
EPSS 0.00
CVE-2023-37511 LOW
HCL Traveler To-Do < 12.0.6 - Insecure Web Content Loading via App Transport Security Misconfiguration
Aug 11, 2023
CVSS 3.5
EPSS 0.00
CVE-2023-23342 MEDIUM
Hcltech HCL Nomad 1.0.0 through 1.0.7 - Cryptographic Key Validation Bypass
Aug 10, 2023
CVSS 6.6
EPSS 0.00
CVE-2023-23347 MEDIUM
HCL DRYiCE iAutomate - Use of a Broken Cryptographic Algorithm
Aug 09, 2023
CVSS 6.4
EPSS 0.00
CVE-2023-23346 MEDIUM
HCL DRYiCE MyCloud - Use of a Broken Cryptographic Algorithm
Aug 09, 2023
CVSS 6.4
EPSS 0.00
CVE-2023-37501 HIGH
HCL Unica < 12.1.1 - Stored Cross-Site Scripting in Campaign Field
Aug 03, 2023
CVSS 8.1
EPSS 0.00
CVE-2023-37500 HIGH
HCL Unica < 12.1.1 - Stored Cross-Site Scripting
Aug 03, 2023
CVSS 8.1
EPSS 0.00
CVE-2023-37499 HIGH
HCL Unica < 12.1.1 - Stored Cross-Site Scripting
Aug 03, 2023
CVSS 8.1
EPSS 0.00
CVE-2023-37498 HIGH
HCLTech Unica <= 12.1.1 - Privilege Escalation
Aug 03, 2023
CVSS 8.1
EPSS 0.00