hcltech

410 tracked vulnerabilities.

CVE-2024-42171 MEDIUM
HCL MyXalytics - Session Fixation via Crafted URL
Jan 11, 2025
CVSS 6.4
EPSS 0.00
CVE-2024-42170 MEDIUM
HCL MyXalytics - Session Fixation via Crafted URL Session Token
Jan 11, 2025
CVSS 6.8
EPSS 0.00
CVE-2024-42169 HIGH
HCL MyXalytics - Authorization Bypass via Insecure Direct Object Reference
Jan 11, 2025
CVSS 7.1
EPSS 0.00
CVE-2024-42168 HIGH
HCL MyXalytics - Out-of-Band Resource Load via HTTP
Jan 11, 2025
CVSS 8.9
EPSS 0.00
CVE-2024-42188 LOW
HCL Connections - Unauthenticated Broken Access Control
Nov 14, 2024
CVSS 3.7
EPSS 0.00
CVE-2024-30133 MEDIUM
HCL Traveler for Microsoft Outlook - Control Flow Vulnerability
Nov 12, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-30142 LOW
HCL BigFix Compliance - Info Disclosure
Nov 07, 2024
CVSS 3.8
EPSS 0.00
CVE-2024-30141 MEDIUM
HCL BigFix Compliance - Info Disclosure
Nov 07, 2024
CVSS 4.7
EPSS 0.00
CVE-2024-30140 MEDIUM
HCL BigFix Compliance - Open Redirect
Nov 07, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-30149 MEDIUM
HCL AppScan Source <= 10.6.0 - Info Disclosure
Oct 31, 2024
CVSS 4.8
EPSS 0.00
CVE-2024-30106 LOW
HCL Connections - Exposure of Sensitive Information via IBM WebSphere Request Handling
Oct 28, 2024
CVSS 3.5
EPSS 0.00
CVE-2024-30124 MEDIUM
HCL Sametime < 12.0.2 - Insecure Default REST Service Endpoint
Oct 23, 2024
CVSS 4.0
EPSS 0.00
CVE-2024-30122 MEDIUM
HCL Sametime < 12.0.2 - Insecure Storage of Sensitive Information via Missing Security Headers
Oct 23, 2024
CVSS 5.8
EPSS 0.00
CVE-2024-30117 LOW
HCL BigFix Platform 9.5-9.5.25 - Uncontrolled Search Path Element
Oct 14, 2024
CVSS 2.5
EPSS 0.00
CVE-2024-30118 LOW
HCL Connections - Exposure of Sensitive Information via Improper Request Handling
Oct 09, 2024
CVSS 3.5
EPSS 0.00
CVE-2024-30132 LOW
HCL Nomad Server on Domino < 1.0.13 - Sensitive Information Exposure via Missing HTTP Security Headers
Oct 01, 2024
CVSS 3.7
EPSS 0.00
CVE-2024-23586 MEDIUM
HCL Nomad < 1.0.13 - Unauthenticated Insufficient Session Expiration
Sep 27, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-30134 MEDIUM
HCL Traveler for Microsoft Outlook < 3.0.9 - Improper Certificate Validation
Sep 26, 2024
CVSS 6.7
EPSS 0.00
CVE-2024-30128 HIGH
HCL Nomad Server on Domino - Open Proxy IP Masking
Sep 25, 2024
CVSS 8.6
EPSS 0.00
CVE-2024-30130 LOW
HCL Nomad Server on Domino < 1.0.12 - Sensitive Information Exposure via Browser Cache
Jul 19, 2024
CVSS 3.7
EPSS 0.00
CVE-2024-30126 MEDIUM
HCL BigFix Compliance < 2.0.11 - Clickjacking via Missing X-Frame-Options Header
Jul 18, 2024
CVSS 4.7
EPSS 0.00
CVE-2024-30125 MEDIUM
HCL BigFix Compliance < 2.0.11 - Denial of Service
Jul 18, 2024
CVSS 6.2
EPSS 0.00
CVE-2024-23562 MEDIUM
HCL Domino - Unauthenticated Sensitive Information Exposure
Jul 08, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-23588 MEDIUM
HCL Nomad Server on Domino < 1.0.12 - Denial of Service
Jul 05, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-30135 LOW
HCL DRYiCE AEX - Exposure of Sensitive Information via Mobile Application Snapshot
Jun 28, 2024
CVSS 3.3
EPSS 0.00