Vulnerabilities > CVE-2019-4301 - Unspecified vulnerability in Hcltech Self-Service Application 3.0.0

047910
CVSS 6.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
SINGLE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
hcltech
NVD
Published: 2020-02-28
Updated: 2020-08-24

Summary

BigFix Self-Service Application (SSA) is vulnerable to arbitrary code execution if Javascript code is included in Running Message or Post Message HTML.

Vulnerable Configurations

Part Description Count
Application
Hcltech
1

References