Vulnerabilities > Hcltechsw > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-01-16 CVE-2023-37523 Unspecified vulnerability in Hcltechsw Bigfix Bare OSD Metal Server Webui
Missing or insecure tags in the HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower could allow an attacker to execute a malicious script on the user's browser.
network
low complexity
hcltechsw
critical
 9.8
9.8
2024-01-16 CVE-2023-37522 Unspecified vulnerability in Hcltechsw Bigfix Bare OSD Metal Server Webui
HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower has missing or insecure tags that could allow an attacker to execute a malicious script on the user's browser.
network
low complexity
hcltechsw
critical
 9.8
9.8
2022-12-12 CVE-2022-38656 Unspecified vulnerability in Hcltechsw HCL Commerce 9.1.8/9.1.9
HCL Commerce, when using Elasticsearch, can allow a remote attacker to cause a denial of service attack on the site and make administrative changes.
network
low complexity
hcltechsw
critical
 9.8
9.8