Vulnerabilities > Hcltechsw > HCL Launch

DATE CVE VULNERABILITY TITLE RISK
2024-02-03 CVE-2024-23550 Unspecified vulnerability in Hcltechsw HCL Devops Deploy and HCL Launch
HCL DevOps Deploy / HCL Launch (UCD) could disclose sensitive user information when installing the Windows agent.
local
low complexity
hcltechsw
5.5
2023-12-28 CVE-2023-45702 Unspecified vulnerability in Hcltechsw HCL Launch
An HCL UrbanCode Deploy Agent installed as a Windows service in a non-standard location could be subject to a denial of service attack by local accounts..
local
low complexity
hcltechsw
5.5
2023-12-28 CVE-2023-45701 Information Exposure Through an Error Message vulnerability in Hcltechsw HCL Launch
HCL Launch could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.
network
low complexity
hcltechsw CWE-209
6.5
2023-12-21 CVE-2023-45700 Cross-site Scripting vulnerability in Hcltechsw HCL Launch
HCL Launch is vulnerable to HTML injection.
network
low complexity
hcltechsw CWE-79
5.4
2023-12-21 CVE-2023-45703 Unspecified vulnerability in Hcltechsw HCL Launch
HCL Launch may mishandle input validation of an uploaded archive file leading to a denial of service due to resource exhaustion.
network
low complexity
hcltechsw
7.5
2023-07-10 CVE-2023-23348 Unspecified vulnerability in Hcltechsw HCL Launch
HCL Launch could disclose sensitive information if a manual edit of a configuration file has been performed.
local
low complexity
hcltechsw
5.5
2023-04-02 CVE-2022-42452 Cross-site Scripting vulnerability in Hcltechsw HCL Launch
HCL Launch is vulnerable to HTML injection.
network
low complexity
hcltechsw CWE-79
5.4
2022-12-12 CVE-2022-42445 Unspecified vulnerability in Hcltechsw HCL Launch
HCL Launch could allow a user with administrative privileges, including "Manage Security" permissions, the ability to recover a credential previously saved for performing authenticated LDAP searches.
network
low complexity
hcltechsw
4.9
2022-07-06 CVE-2022-27548 Insufficiently Protected Credentials vulnerability in Hcltechsw HCL Launch 7.0.5.10/7.1.2.6/7.2.2.1
HCL Launch stores user credentials in plain clear text which can be read by a local user.
local
low complexity
hcltechsw CWE-522
2.1
2022-07-06 CVE-2022-27549 Cleartext Storage of Sensitive Information vulnerability in Hcltechsw HCL Launch 7.0.5.10/7.1.2.6/7.2.2.1
HCL Launch may store certain data for recurring activities in a plain text format.
local
low complexity
hcltechsw CWE-312
5.5