Vulnerabilities > Hcltech > Dryice Myxalytics > 6.3

DATE CVE VULNERABILITY TITLE RISK
2025-01-11 CVE-2024-42173 Weak Password Requirements vulnerability in Hcltech Dryice Myxalytics 6.3
HCL MyXalytics is affected by an improper password policy implementation vulnerability.
network
high complexity
hcltech CWE-521
4.8
4.8
2025-01-11 CVE-2024-42174 Information Exposure Through Discrepancy vulnerability in Hcltech Dryice Myxalytics 6.3
HCL MyXalytics is affected by username enumeration vulnerability.
network
high complexity
hcltech CWE-203
3.7
3.7
2025-01-11 CVE-2024-42168 Server-Side Request Forgery (SSRF) vulnerability in Hcltech Dryice Myxalytics 6.3
HCL MyXalytics is affected by out-of-band resource load (HTTP) vulnerability.
network
low complexity
hcltech CWE-918
critical
 9.4
9.4
2025-01-11 CVE-2024-42169 Authorization Bypass Through User-Controlled Key vulnerability in Hcltech Dryice Myxalytics 6.3
HCL MyXalytics is affected by insecure direct object references.
network
low complexity
hcltech CWE-639
8.1
8.1