CVE-2020-14231

HIGH

HCL Client Application Access v9 - Authenticated Stack Buffer Overflow via Input Parameter Handling

Title source: llm
STIX 2.1

Description

A vulnerability in the input parameter handling of HCL Client Application Access v9 could potentially be exploited by an authenticated attacker resulting in a stack buffer overflow. This could allow the attacker to crash the program or inject code into the system which would execute with the privileges of the currently logged in user.

References (1)

Core 1
Core References

Scores

CVSS v3 8.8
EPSS 0.0102
EPSS Percentile 59.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-20 CWE-787
Status published
Products (1)
hcltechsw/hcl_client_application_access 9.0
Published Dec 22, 2020
Tracked Since Feb 18, 2026