Vulnerabilities > Hcltechsw > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-03 | CVE-2024-23550 | Unspecified vulnerability in Hcltechsw HCL Devops Deploy and HCL Launch HCL DevOps Deploy / HCL Launch (UCD) could disclose sensitive user information when installing the Windows agent. | 5.5 |
| 2024-01-16 | CVE-2023-37521 | Unspecified vulnerability in Hcltechsw Bigfix Bare OSD Metal Server Webui 311.19 HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower can sometimes include sensitive information in a query string which could allow an attacker to execute a malicious attack. | 5.3 |
| 2023-12-28 | CVE-2023-45702 | Unspecified vulnerability in Hcltechsw HCL Launch An HCL UrbanCode Deploy Agent installed as a Windows service in a non-standard location could be subject to a denial of service attack by local accounts.. | 5.5 |
| 2023-12-28 | CVE-2023-45701 | Information Exposure Through an Error Message vulnerability in Hcltechsw HCL Launch HCL Launch could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. | 6.5 |
| 2023-12-21 | CVE-2023-45700 | Cross-site Scripting vulnerability in Hcltechsw HCL Launch HCL Launch is vulnerable to HTML injection. | 5.4 |
| 2023-07-10 | CVE-2023-23348 | Unspecified vulnerability in Hcltechsw HCL Launch HCL Launch could disclose sensitive information if a manual edit of a configuration file has been performed. | 5.5 |
| 2023-04-02 | CVE-2022-42452 | Cross-site Scripting vulnerability in Hcltechsw HCL Launch HCL Launch is vulnerable to HTML injection. | 5.4 |
| 2022-12-21 | CVE-2022-42454 | Unspecified vulnerability in Hcltechsw Bigfix Insights for vulnerability Remediation Insights for Vulnerability Remediation (IVR) is vulnerable to man-in-the-middle attacks that may lead to information disclosure.? This requires privileged network access. | 5.3 |
| 2022-12-21 | CVE-2022-44756 | Improper Input Validation vulnerability in Hcltechsw Bigfix Insights for vulnerability Remediation Insights for Vulnerability Remediation (IVR) is vulnerable to improper input validation. | 6.5 |
| 2022-12-12 | CVE-2022-42445 | Unspecified vulnerability in Hcltechsw HCL Launch HCL Launch could allow a user with administrative privileges, including "Manage Security" permissions, the ability to recover a credential previously saved for performing authenticated LDAP searches. | 4.9 |