hcltech
410 tracked vulnerabilities.
CVE-2024-42171
MEDIUM
HCL MyXalytics - Session Fixation via Crafted URL
Jan 11, 2025
CVSS 6.4
EPSS 0.00
CVE-2024-42170
MEDIUM
HCL MyXalytics - Session Fixation via Crafted URL Session Token
Jan 11, 2025
CVSS 6.8
EPSS 0.00
CVE-2024-42169
HIGH
HCL MyXalytics - Authorization Bypass via Insecure Direct Object Reference
Jan 11, 2025
CVSS 7.1
EPSS 0.00
CVE-2024-42168
HIGH
HCL MyXalytics - Out-of-Band Resource Load via HTTP
Jan 11, 2025
CVSS 8.9
EPSS 0.00
CVE-2024-42188
LOW
HCL Connections - Unauthenticated Broken Access Control
Nov 14, 2024
CVSS 3.7
EPSS 0.00
CVE-2024-30133
MEDIUM
HCL Traveler for Microsoft Outlook - Control Flow Vulnerability
Nov 12, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-30142
LOW
HCL BigFix Compliance - Info Disclosure
Nov 07, 2024
CVSS 3.8
EPSS 0.00
CVE-2024-30141
MEDIUM
HCL BigFix Compliance - Info Disclosure
Nov 07, 2024
CVSS 4.7
EPSS 0.00
CVE-2024-30140
MEDIUM
HCL BigFix Compliance - Open Redirect
Nov 07, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-30149
MEDIUM
HCL AppScan Source <= 10.6.0 - Info Disclosure
Oct 31, 2024
CVSS 4.8
EPSS 0.00
CVE-2024-30106
LOW
HCL Connections - Exposure of Sensitive Information via IBM WebSphere Request Handling
Oct 28, 2024
CVSS 3.5
EPSS 0.00
CVE-2024-30124
MEDIUM
HCL Sametime < 12.0.2 - Insecure Default REST Service Endpoint
Oct 23, 2024
CVSS 4.0
EPSS 0.00
CVE-2024-30122
MEDIUM
HCL Sametime < 12.0.2 - Insecure Storage of Sensitive Information via Missing Security Headers
Oct 23, 2024
CVSS 5.8
EPSS 0.00
CVE-2024-30117
LOW
HCL BigFix Platform 9.5-9.5.25 - Uncontrolled Search Path Element
Oct 14, 2024
CVSS 2.5
EPSS 0.00
CVE-2024-30118
LOW
HCL Connections - Exposure of Sensitive Information via Improper Request Handling
Oct 09, 2024
CVSS 3.5
EPSS 0.00
CVE-2024-30132
LOW
HCL Nomad Server on Domino < 1.0.13 - Sensitive Information Exposure via Missing HTTP Security Headers
Oct 01, 2024
CVSS 3.7
EPSS 0.00
CVE-2024-23586
MEDIUM
HCL Nomad < 1.0.13 - Unauthenticated Insufficient Session Expiration
Sep 27, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-30134
MEDIUM
HCL Traveler for Microsoft Outlook < 3.0.9 - Improper Certificate Validation
Sep 26, 2024
CVSS 6.7
EPSS 0.00
CVE-2024-30128
HIGH
HCL Nomad Server on Domino - Open Proxy IP Masking
Sep 25, 2024
CVSS 8.6
EPSS 0.00
CVE-2024-30130
LOW
HCL Nomad Server on Domino < 1.0.12 - Sensitive Information Exposure via Browser Cache
Jul 19, 2024
CVSS 3.7
EPSS 0.00
CVE-2024-30126
MEDIUM
HCL BigFix Compliance < 2.0.11 - Clickjacking via Missing X-Frame-Options Header
Jul 18, 2024
CVSS 4.7
EPSS 0.00
CVE-2024-30125
MEDIUM
HCL BigFix Compliance < 2.0.11 - Denial of Service
Jul 18, 2024
CVSS 6.2
EPSS 0.00
CVE-2024-23562
MEDIUM
HCL Domino - Unauthenticated Sensitive Information Exposure
Jul 08, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-23588
MEDIUM
HCL Nomad Server on Domino < 1.0.12 - Denial of Service
Jul 05, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-30135
LOW
HCL DRYiCE AEX - Exposure of Sensitive Information via Mobile Application Snapshot
Jun 28, 2024
CVSS 3.3
EPSS 0.00
Products
bigfix_platform 33
dryice_myxalytics 31
aion 29
connections 22
domino 22
bigfix_service_management 18
unica 18
aftermarket_cloud 17
sametime 17
digital_experience 11
hcl_leap 11
notes 11
bigfix_mobile 10
bigfix_compliance 9
domino_leap 9
appscan 8
traveler_for_microsoft_outlook 8
bigfix_webui 7
hcl_inotes 7
bigfix_modern_client_management 6
dryice_iautomate 6
icontrol 6
traveler 6
bigfix_insights_for_vulnerability_remediation 5
dfxanalytics 5
intelliops_event_management 5
verse 5
bigfix_saas 4
dryice_aex 4
hcl_compass 4
Quick Filters