Vulnerabilities > CVE-2024-30106 - Unspecified vulnerability in Hcltech Connections 7.0/8.0

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

hcltech

NVD

Published: 2024-10-28

Updated: 2024-11-08

Summary

HCL Connections is vulnerable to an information disclosure vulnerability, due to an IBM WebSphere Application Server error, which could allow a user to obtain sensitive information they are not entitled to due to the improper handling of request data.

Vulnerable Configurations

Part	Description	Count
Application	Hcltech Hcltech Connections 8.0 Hcltech Connections 7.0	2

References

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0116967