Vulnerabilities > Hcltech > Verse

DATE CVE VULNERABILITY TITLE RISK
2023-08-01 CVE-2023-37496 Cross-site Scripting vulnerability in Hcltech Verse
HCL Verse is susceptible to a Stored Cross Site Scripting (XSS) vulnerability.
network
low complexity
hcltech CWE-79
5.4
5.4
2023-07-26 CVE-2023-28013 Cross-site Scripting vulnerability in Hcltech Verse
HCL Verse is susceptible to a Reflected Cross Site Scripting (XSS) vulnerability.
network
low complexity
hcltech CWE-79
6.1
6.1
2023-03-10 CVE-2021-27788 Cross-site Scripting vulnerability in Hcltech Verse
HCL Verse is susceptible to a Cross Site Scripting (XSS) vulnerability.
network
low complexity
hcltech CWE-79
6.1
6.1
2022-11-01 CVE-2020-4099 Inadequate Encryption Strength vulnerability in Hcltech Verse 12.0.9
The application was signed using a key length less than or equal to 1024 bits, making it potentially vulnerable to forged digital signatures.
network
low complexity
hcltech CWE-326
7.5
7.5
2022-05-12 CVE-2021-27768 Improper Certificate Validation vulnerability in Hcltech Verse
Using the ability to perform a Man-in-the-Middle (MITM) attack, which indicates a lack of hostname verification, sensitive account information was able to be intercepted.
network
hcltech CWE-295
4.3
4.3