Vulnerabilities > Hcltech

DATE	CVE	VULNERABILITY TITLE	RISK
2020-02-14	CVE-2019-4392	Use of Hard-coded Credentials vulnerability in Hcltech Appscan 9.0.3.13 HCL AppScan Standard Edition 9.0.3.13 and earlier uses hard-coded credentials which can be exploited by attackers to get unauthorized access to the system. network low complexity hcltech CWE-798 critical	9.8
2019-12-18	CVE-2019-4388	Cross-site Scripting vulnerability in Hcltech Appscan Source HCL AppScan Source 9.0.3.13 and earlier is susceptible to cross-site scripting (XSS) attacks by allowing users to embed arbitrary JavaScript code in the Web UI. network low complexity hcltech CWE-79	4.8
2019-10-18	CVE-2019-4409	Cross-site Scripting vulnerability in Hcltech Traveler HCL Traveler versions 9.x and earlier are susceptible to cross-site scripting attacks. network low complexity hcltech CWE-79	5.4
2019-09-25	CVE-2019-16188	XXE vulnerability in Hcltech Appscan Source HCL AppScan Source before 9.03.13 is susceptible to XML External Entity (XXE) attacks in multiple locations. local low complexity hcltech CWE-611	7.1
2018-05-30	CVE-2018-11518	Improper Input Validation vulnerability in Hcltech Legacy IVR Firmware A vulnerability allows a phreaking attack on HCL legacy IVR systems that do not use VoIP. network high complexity hcltech CWE-20	8.1

Vulnerabilities > Hcltech {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Hcltech"}]}