Vulnerabilities > CVE-2020-14231 - Out-of-bounds Write vulnerability in Hcltechsw HCL Client Application Access 9.0

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

hcltechsw

CWE-787

NVD

Published: 2020-12-22

Updated: 2021-07-21

Summary

A vulnerability in the input parameter handling of HCL Client Application Access v9 could potentially be exploited by an authenticated attacker resulting in a stack buffer overflow. This could allow the attacker to crash the program or inject code into the system which would execute with the privileges of the currently logged in user.

Vulnerable Configurations

Part	Description	Count
Application	Hcltechsw Hcltechsw HCL Client Application Access 9.0	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085882