Vulnerabilities > CVE-2024-42175 - Unspecified vulnerability in Hcltech Dryice Myxalytics 6.3

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

hcltech

critical

NVD

Published: 2025-01-11

Updated: 2025-05-16

Summary

HCL MyXalytics is affected by a weak input validation vulnerability. The application accepts special characters and there is no length validation. This can lead to security vulnerabilities like SQL injection, XSS, and buffer overflow.

Vulnerable Configurations

Part	Description	Count
Application	Hcltech Hcltech Dryice Myxalytics 6.3	1

References

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0118149