hcltech
410 tracked vulnerabilities.
CVE-2023-50345
LOW
HCL DRYiCE MyXalytics - Open Redirect
Jan 03, 2024
CVSS 3.7
EPSS 0.00
CVE-2023-37520
HIGH
HCL BigFix Platform 9.5.12.68 - Unauthenticated Stored Cross-Site Scripting in Gather Status Report
Dec 21, 2023
CVSS 7.7
EPSS 0.00
CVE-2023-37519
HIGH
HCL BigFix Platform < 9.5.23 - Unauthenticated Stored Cross-Site Scripting in Download Status Report
Dec 21, 2023
CVSS 7.7
EPSS 0.00
CVE-2023-28025
MEDIUM
HCL BigFix Modern Client Management < 3.2 - Stored Cross-Site Scripting via SVG Tag Injection
Dec 21, 2023
CVSS 6.6
EPSS 0.00
CVE-2023-28022
LOW
HCL Connections - Information Disclosure via Improper Request Handling
Dec 15, 2023
CVSS 3.5
EPSS 0.01
CVE-2023-28017
MEDIUM
HCL Connections - Stored Cross-Site Scripting
Dec 07, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-37533
MEDIUM
HCL Connections - Reflected Cross-Site Scripting
Nov 09, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-37532
MEDIUM
HCL Commerce 9.1.8-9.1.13.2 - Path Traversal via Crafted URL
Oct 23, 2023
CVSS 5.8
EPSS 0.01
CVE-2023-37503
HIGH
HCL Compass 2.0.0-2.0.3 - Weak Password Requirements
Oct 19, 2023
CVSS 8.1
EPSS 0.00
CVE-2023-37504
HIGH
HCL Compass 2.0.0-2.0.3 - Insufficient Session Expiration
Oct 19, 2023
CVSS 7.1
EPSS 0.00
CVE-2023-37502
CRITICAL
HCL Compass 2.0.0-2.0.2 - Unrestricted Upload of File with Dangerous Type
Oct 18, 2023
CVSS 9.0
EPSS 0.00
CVE-2023-37537
HIGH
HCL AppScan Presence - Privilege Escalation
Oct 17, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-37538
CRITICAL
HCL Digital Experience - Reflected Cross-Site Scripting
Oct 11, 2023
CVSS 9.3
EPSS 0.00
CVE-2023-37536
HIGH
Xerces-C++ 3.2.3 - Integer Overflow via HTTP Request
Oct 11, 2023
CVSS 8.2
EPSS 0.01
CVE-2023-28010
MEDIUM
HCL Domino - Unauthorized Sensitive Information Exposure via Server Hostname
Sep 08, 2023
CVSS 4.0
EPSS 0.00
CVE-2023-37513
LOW
HCL Traveler To-Do < 12.0.6 - Sensitive Information Exposure via App Snapshot
Aug 11, 2023
CVSS 3.3
EPSS 0.00
CVE-2023-37512
LOW
HCL Traveler Companion < 12.0.6 - Sensitive Information Exposure via App Snapshot
Aug 11, 2023
CVSS 3.3
EPSS 0.00
CVE-2023-37511
LOW
HCL Traveler To-Do < 12.0.6 - Insecure Web Content Loading via App Transport Security Misconfiguration
Aug 11, 2023
CVSS 3.5
EPSS 0.00
CVE-2023-23342
MEDIUM
Hcltech HCL Nomad 1.0.0 through 1.0.7 - Cryptographic Key Validation Bypass
Aug 10, 2023
CVSS 6.6
EPSS 0.00
CVE-2023-23347
MEDIUM
HCL DRYiCE iAutomate - Use of a Broken Cryptographic Algorithm
Aug 09, 2023
CVSS 6.4
EPSS 0.00
CVE-2023-23346
MEDIUM
HCL DRYiCE MyCloud - Use of a Broken Cryptographic Algorithm
Aug 09, 2023
CVSS 6.4
EPSS 0.00
CVE-2023-37501
HIGH
HCL Unica < 12.1.1 - Stored Cross-Site Scripting in Campaign Field
Aug 03, 2023
CVSS 8.1
EPSS 0.00
CVE-2023-37500
HIGH
HCL Unica < 12.1.1 - Stored Cross-Site Scripting
Aug 03, 2023
CVSS 8.1
EPSS 0.00
CVE-2023-37499
HIGH
HCL Unica < 12.1.1 - Stored Cross-Site Scripting
Aug 03, 2023
CVSS 8.1
EPSS 0.00
CVE-2023-37498
HIGH
HCLTech Unica <= 12.1.1 - Privilege Escalation
Aug 03, 2023
CVSS 8.1
EPSS 0.00
Products
bigfix_platform 33
dryice_myxalytics 31
aion 29
connections 22
domino 22
bigfix_service_management 18
unica 18
aftermarket_cloud 17
sametime 17
digital_experience 11
hcl_leap 11
notes 11
bigfix_mobile 10
bigfix_compliance 9
domino_leap 9
appscan 8
traveler_for_microsoft_outlook 8
bigfix_webui 7
hcl_inotes 7
bigfix_modern_client_management 6
dryice_iautomate 6
icontrol 6
traveler 6
bigfix_insights_for_vulnerability_remediation 5
dfxanalytics 5
intelliops_event_management 5
verse 5
bigfix_saas 4
dryice_aex 4
hcl_compass 4
Quick Filters