Vulnerabilities > Hcltech > Dryice Myxalytics
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-11 | CVE-2024-42173 | Weak Password Requirements vulnerability in Hcltech Dryice Myxalytics 6.3 HCL MyXalytics is affected by an improper password policy implementation vulnerability. | 4.8 |
| 2025-01-11 | CVE-2024-42174 | Information Exposure Through Discrepancy vulnerability in Hcltech Dryice Myxalytics 6.3 HCL MyXalytics is affected by username enumeration vulnerability. | 3.7 |
| 2025-01-11 | CVE-2024-42168 | Server-Side Request Forgery (SSRF) vulnerability in Hcltech Dryice Myxalytics 6.3 HCL MyXalytics is affected by out-of-band resource load (HTTP) vulnerability. | 9.4 |
| 2025-01-11 | CVE-2024-42169 | Authorization Bypass Through User-Controlled Key vulnerability in Hcltech Dryice Myxalytics 6.3 HCL MyXalytics is affected by insecure direct object references. | 8.1 |
| 2024-04-10 | CVE-2023-50347 | Unspecified vulnerability in Hcltech Dryice Myxalytics HCL DRYiCE MyXalytics is impacted by an insecure SQL interface vulnerability, potentially giving an attacker the ability to execute custom SQL queries. | 9.8 |
| 2024-01-03 | CVE-2023-45722 | Path Traversal vulnerability in Hcltech Dryice Myxalytics 5.9/6.0/6.1 HCL DRYiCE MyXalytics is impacted by path traversal arbitrary file read vulnerability because it uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory. | 9.8 |
| 2024-01-03 | CVE-2023-45723 | Path Traversal vulnerability in Hcltech Dryice Myxalytics 5.9/6.0/6.1 HCL DRYiCE MyXalytics is impacted by path traversal vulnerability which allows file upload capability. | 9.8 |
| 2024-01-03 | CVE-2023-45724 | Unrestricted Upload of File with Dangerous Type vulnerability in Hcltech Dryice Myxalytics 5.9/6.0/6.1 HCL DRYiCE MyXalytics product is impacted by unauthenticated file upload vulnerability. | 9.8 |
| 2024-01-03 | CVE-2023-50341 | Unspecified vulnerability in Hcltech Dryice Myxalytics 5.9/6.0/6.1 HCL DRYiCE MyXalytics is impacted by Improper Access Control (Obsolete web pages) vulnerability. | 7.5 |
| 2024-01-03 | CVE-2023-50342 | Authorization Bypass Through User-Controlled Key vulnerability in Hcltech Dryice Myxalytics 5.9/6.0/6.1 HCL DRYiCE MyXalytics is impacted by an Insecure Direct Object Reference (IDOR) vulnerability. | 4.3 |