Vulnerabilities > Hcltechsw > HCL Commerce > 9.0.1.17

DATE CVE VULNERABILITY TITLE RISK
2022-07-30 CVE-2021-27785 Insufficiently Protected Credentials vulnerability in Hcltechsw HCL Commerce
HCL Commerce's Remote Store server could allow a local attacker to obtain sensitive personal information.
local
low complexity
hcltechsw CWE-522
5.0
5.0
2022-05-06 CVE-2021-27751 Insufficient Session Expiration vulnerability in Hcltechsw HCL Commerce
HCL Commerce is affected by an Insufficient Session Expiration vulnerability.
local
low complexity
hcltechsw CWE-613
3.3
3.3