Vulnerabilities > Hcltech > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-04-17 | CVE-2024-42177 | Inadequate Encryption Strength vulnerability in Hcltech Dryice Myxalytics 6.3 HCL MyXalytics is affected by SSL/TLS Protocol affected with BREACH & LUCKY13 vulnerabilities. | 6.4 |
| 2025-01-11 | CVE-2024-42170 | Session Fixation vulnerability in Hcltech Dryice Myxalytics 6.3 HCL MyXalytics is affected by a session fixation vulnerability. | 6.8 |
| 2025-01-11 | CVE-2024-42171 | Session Fixation vulnerability in Hcltech Dryice Myxalytics 6.3 HCL MyXalytics is affected by a session fixation vulnerability. | 6.4 |
| 2025-01-11 | CVE-2024-42173 | Weak Password Requirements vulnerability in Hcltech Dryice Myxalytics 6.3 HCL MyXalytics is affected by an improper password policy implementation vulnerability. | 4.8 |
| 2024-10-28 | CVE-2024-30106 | Unspecified vulnerability in Hcltech Connections 7.0/8.0 HCL Connections is vulnerable to an information disclosure vulnerability, due to an IBM WebSphere Application Server error, which could allow a user to obtain sensitive information they are not entitled to due to the improper handling of request data. | 4.3 |
| 2024-10-23 | CVE-2023-50355 | Information Exposure Through an Error Message vulnerability in Hcltech Sametime 11.6/12.0/12.0.2 HCL Sametime is impacted by the error messages containing sensitive information. | 5.3 |
| 2024-10-23 | CVE-2024-30122 | Unspecified vulnerability in Hcltech Sametime 11.6/12.0/12.0.2 HCL Sametime is impacted by misconfigured security related HTTP headers. | 5.3 |
| 2024-10-14 | CVE-2024-30117 | Uncontrolled Search Path Element vulnerability in Hcltech Bigfix Platform A dynamic search for a prerequisite library could allow the possibility for an attacker to replace the correct file under some circumstances. | 5.3 |
| 2024-10-09 | CVE-2024-30118 | Unspecified vulnerability in Hcltech Connections 7.0/8.0 HCL Connections is vulnerable to an information disclosure vulnerability which could allow a user to obtain sensitive information they are not entitled to because of improperly handling the request data. | 5.7 |
| 2024-07-05 | CVE-2024-23588 | Unspecified vulnerability in Hcltech Nomad Server on Domino HCL Nomad server on Domino fails to properly handle users configured with limited Domino access resulting in a possible denial of service vulnerability. | 6.5 |