Vulnerabilities > Hcltech
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-08 | CVE-2023-28010 | Unspecified vulnerability in Hcltech Domino 12.0.2 In some configuration scenarios, the Domino server host name can be exposed. | 5.3 |
| 2023-08-11 | CVE-2023-37511 | Unspecified vulnerability in Hcltech Traveler to DO If certain App Transport Security (ATS) settings are set in a certain manner, insecure loading of web content can be achieved. | 4.3 |
| 2023-08-11 | CVE-2023-37512 | Unspecified vulnerability in Hcltech Traveler Companion When the app is put to the background and the user goes to the task switcher of iOS, the app snapshot is not blurred which may reveal sensitive information. | 5.5 |
| 2023-08-11 | CVE-2023-37513 | Unspecified vulnerability in Hcltech Traveler to DO When the app is put to the background and the user goes to the task switcher of iOS, the app snapshot is not blurred which may reveal sensitive information. | 5.5 |
| 2023-08-10 | CVE-2023-23342 | Unspecified vulnerability in Hcltech HCL Nomad If certain local files are manipulated in a certain manner, the validation to use the cryptographic keys can be circumvented. | 7.1 |
| 2023-08-09 | CVE-2023-23347 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Hcltech Dryice Iautomate 6.0/6.1/6.2 HCL DRYiCE iAutomate is affected by the use of a broken cryptographic algorithm. | 7.1 |
| 2023-08-09 | CVE-2023-23346 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Hcltech Dryice Mycloud HCL DRYiCE MyCloud is affected by the use of a broken cryptographic algorithm. | 7.1 |
| 2023-08-03 | CVE-2023-37501 | Cross-site Scripting vulnerability in Hcltech Unica A Persistent XSS vulnerability can be carried out in a certain field of Unica Campaign. | 6.1 |
| 2023-08-03 | CVE-2023-37497 | XXE vulnerability in Hcltech Unica The Unica application exposes an API which accepts arbitrary XML input. | 8.8 |
| 2023-08-03 | CVE-2023-37498 | Unspecified vulnerability in Hcltech Unica A user is capable of assigning him/herself to arbitrary groups by reusing a POST request issued by an administrator. | 8.8 |