Vulnerabilidades en HCL Software
334 resultadosCVE-2023-37504HIGHAn insufficient session expiration vulnerability affects HCL CompassEPSS 0.3%CVE-2023-50342HIGHInsecure Direct Object Reference (IDOR) affects DRYiCE MyXalyticsEPSS 0.3%CVE-2023-28013MEDIUMHCL Verse is susceptible to a Reflected Cross-Site Scripting (XSS) VulnerabilityEPSS 0.3%CVE-2024-30130LOWHCL Nomad server on Domino is affected by a use of web browser cache containing sensitive information vulnerabilityEPSS 0.3%CVE-2022-38657HIGHAn open redirect to malicious sites affects HCL LeapEPSS 0.3%CVE-2024-30118LOWHCL Connections is susceptible to a sensitive information disclosure vulnerabilityEPSS 0.3%CVE-2022-27545MEDIUMHCL BigFix Web Reports authorized users may perform HTML injection.EPSS 0.3%CVE-2025-59873MEDIUMSession Token Exposure via URL Query ParametersEPSS 0.3%CVE-2025-31955HIGHHCL iAutomate is affected by a sensitive data exposure vulnerabilityEPSS 0.3%CVE-2022-38660HIGHHCL XPages applications are susceptible to Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.3%CVE-2025-52660LOWHCL AION is affected by an Host Header Injection vulnerabilityEPSS 0.3%CVE-2024-42195LOWHCL DevOps Deploy / HCL Launch is vulnerable to HTML injectionEPSS 0.3%CVE-2025-0277MEDIUMHCL BigFix Mobile is affected by an insecure Content Security Policy (CSP)EPSS 0.3%CVE-2025-0276MEDIUMHCL BigFix Modern Client Management (MCM) is affected by an insecure Content Security Policy (CSP)EPSS 0.3%CVE-2025-0257MEDIUMHCL DevOps Deploy / HCL Launch is susceptible to unauthorized access to other servicesEPSS 0.3%CVE-2023-50344MEDIUMUnauthenticated File Downloads affect DRYiCE MyXalyticsEPSS 0.3%CVE-2024-23584MEDIUMHCL BigFix Asset Discovery is affected by a security vulnerabilityEPSS 0.3%CVE-2025-0254MEDIUMHCL Digital Experience components Ring API and dxclient may be vulnerable to man-in-the-middle (MitM) attacks prior to 9.5 CF226.EPSS 0.3%CVE-2021-27759LOWThis vulnerability arises because the application allows the user to perform some sensitive action without verifying that the request was seEPSS 0.3%CVE-2020-4099MEDIUMHCL Verse for Android is susceptible to an APK signing key check vulnerabilityEPSS 0.3%