Vulnerabilidades em HCLSoftware
31 resultadosCVE-2026-21837HIGHHCL Digital Experience is affected by an OS command injection vulnerability in the Digital Asset Management APIEPSS 0.9%CVE-2025-31964LOWHCL BigFix IVR is impacted by an improper service binding configurationEPSS 0.3%CVE-2023-37525MEDIUMHCL BigFix Compliance is vulnerable to a sensitive information disclosureEPSS 0.3%CVE-2026-21783MEDIUMHCL Traveler is affected by sensitive information disclosureEPSS 0.3%CVE-2026-21836MEDIUMHCL DominoIQ is affected by broken access controlEPSS 0.3%CVE-2025-52603LOWHCL Connections is vulnerable to information disclosureEPSS 0.3%CVE-2025-31990MEDIUMHCL DevOps Velocity is susceptible to a Denial of Service vulnerabilityEPSS 0.3%CVE-2025-62328LOWHCL Nomad server on Domino is affected by a missing default frame-ancestors directiveEPSS 0.2%CVE-2025-15633MEDIUMHCL BigFix WebUI is affected by an improper authorization vulnerabilityEPSS 0.2%CVE-2025-62327MEDIUMHCL DevOps Deploy is susceptible to insufficiently protected credentialsEPSS 0.2%CVE-2026-21821HIGHHCL BigFix SCM Reporting is affected by vulnerabilities in jQueryEPSS 0.2%CVE-2025-31991MEDIUMHCL DevOps Velocity is susceptible to brute-force attacksEPSS 0.2%CVE-2025-15634MEDIUMHCL BigFix WebUI is affected by a missing authorization vulnerabilityEPSS 0.2%CVE-2025-31958LOWHCL BigFix Service Management (SM) is susceptible to HTTP Request SmugglingEPSS 0.2%CVE-2024-42210HIGHHCL Unica Marketing Operations v12.1.8 and lower is affected by a Stored cross-site scripting (XSS) vulnerabilityEPSS 0.2%CVE-2026-21788MEDIUMHCL Connections is vulnerable to cross-site scripting (XSS)EPSS 0.2%CVE-2025-31962LOWHCL BigFix IVR is impacted by an insufficient session expiration vulnerabilityEPSS 0.2%CVE-2025-62326MEDIUMHCL Digital Experience is susceptible to stored cross-site scripting (XSS)EPSS 0.2%CVE-2026-21825MEDIUMHCL Digital Experience Compose is affected by a reflected cross-site scripting (XSS) vulnerability in the search centerEPSS 0.2%CVE-2026-21790MEDIUMHCL Traveler is susceptible to a weak default HTTP header validation vulnerabilityEPSS 0.1%