Vulnerabilities > Hcltech

DATE CVE VULNERABILITY TITLE RISK
2023-08-09 CVE-2023-23346 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Hcltech Dryice Mycloud
HCL DRYiCE MyCloud is affected by the use of a broken cryptographic algorithm.
local
low complexity
hcltech CWE-327
7.1
2023-08-03 CVE-2023-37501 Cross-site Scripting vulnerability in Hcltech Unica
A Persistent XSS vulnerability can be carried out in a certain field of Unica Campaign.
network
low complexity
hcltech CWE-79
6.1
2023-08-03 CVE-2023-37497 XXE vulnerability in Hcltech Unica
The Unica application exposes an API which accepts arbitrary XML input.
network
low complexity
hcltech CWE-611
8.8
2023-08-03 CVE-2023-37498 Unspecified vulnerability in Hcltech Unica
A user is capable of assigning him/herself to arbitrary groups by reusing a POST request issued by an administrator.
network
low complexity
hcltech
8.8
2023-08-03 CVE-2023-37499 Cross-site Scripting vulnerability in Hcltech Unica
A Persistent Cross-site Scripting (XSS) vulnerability can be carried out in a certain field of the Unica Platform.
network
low complexity
hcltech CWE-79
6.1
2023-08-03 CVE-2023-37500 Cross-site Scripting vulnerability in Hcltech Unica
A Persistent Cross-site Scripting (XSS) vulnerability can be carried out on certain pages of Unica Platform.
network
low complexity
hcltech CWE-79
6.1
2023-08-01 CVE-2023-37496 Cross-site Scripting vulnerability in Hcltech Verse
HCL Verse is susceptible to a Stored Cross Site Scripting (XSS) vulnerability.
network
low complexity
hcltech CWE-79
5.4
2023-07-27 CVE-2023-28012 Command Injection vulnerability in Hcltech Bigfix Mobile 3.0
HCL BigFix Mobile is vulnerable to a command injection attack.
network
low complexity
hcltech CWE-77
8.8
2023-07-27 CVE-2023-28014 Cross-site Scripting vulnerability in Hcltech Bigfix Mobile 3.0
HCL BigFix Mobile is vulnerable to a cross-site scripting attack.
network
low complexity
hcltech CWE-79
5.4
2023-07-26 CVE-2023-28013 Cross-site Scripting vulnerability in Hcltech Verse
HCL Verse is susceptible to a Reflected Cross Site Scripting (XSS) vulnerability.
network
low complexity
hcltech CWE-79
6.1