CVE-2020-14223
MEDIUMHCL Digital Experience 8.5, 9.0, 9.5 - Reflected Cross-Site Scripting
Title source: llmDescription
HCL Digital Experience 8.5, 9.0, 9.5 is susceptible to cross-site scripting (XSS). The vulnerability could be employed in a reflected or non-persistent XSS attack.
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_misc
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0082645
Scores
CVSS v3
6.1
EPSS
0.0036
EPSS Percentile
58.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Details
CWE
CWE-79
Status
published
Products (3)
hcltech/digital_experience
8.5
hcltech/digital_experience
9.0
hcltech/digital_experience
9.5
Published
Oct 01, 2020
Tracked Since
Feb 18, 2026