| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-59870 | Improper management of a static JWT signing secret in the web application, where the secret lacks rotation , introducing a security risk | HCL Software | MyXalytics | High | 7.4 | 2026-01-16 10:12:01 | Deep Dive |
| CVE-2025-52655 | HCL MyXalytics is affected by a Cross-Domain Script Include vulnerability. | HCL | HCL MyXalytics | Low | 3.1 | 2025-10-10 08:55:40 | Deep Dive |
| CVE-2025-52656 | HCL MyXalytics product is affected by Mass Assignment vulnerability | HCL | HCL MyXalytics | High | 7.6 | 2025-10-03 18:20:19 | Deep Dive |
| CVE-2025-52658 | HCL MyXalytics is affected by the use of vulnerable/outdated versions | HCL Software | MyXalytics | Low | 3.5 | 2025-10-03 18:16:00 | Deep Dive |
| CVE-2025-52654 | HCL MyXalytics is affected by an HTML Injection | HCL Software | HCL MyXalytics | Medium | 4.6 | 2025-10-03 18:11:20 | Deep Dive |
| CVE-2025-52653 | Cross Site Scripting vulnerability in the web application | HCL | HCL MyXalytics | High | 7.6 | 2025-10-03 17:59:45 | Deep Dive |
| CVE-2024-42178 | HCL MyXalytics is affected by a failure to restrict URL access vulnerability | HCL Software | HCL MyXalytics | Low | 2.5 | 2025-04-17 21:24:34 | Deep Dive |
| CVE-2024-42177 | HCL MyXalytics is affected by SSL∕TLS Protocol affected with BREACH & LUCKY13 vulnerabilities | HCL Software | HCL MyXalytics | Low | 2.6 | 2025-04-17 19:18:05 | Deep Dive |
| CVE-2024-42176 | HCL MyXalytics is affected by concurrent login vulnerability | HCL Software | HCL MyXalytics | Low | 2.6 | 2025-03-19 14:24:22 | Deep Dive |
| CVE-2024-42181 | HCL MyXalytics is affected by a cleartext transmission of sensitive information vulnerability | HCL Software | DRYiCE MyXalytics | Low | 1.6 | 2025-01-12 22:04:37 | Deep Dive |
| CVE-2024-42180 | HCL MyXalytics is affected by a malicious file upload vulnerability | HCL Software | DRYiCE MyXalytics | Low | 1.6 | 2025-01-12 21:53:03 | Deep Dive |
| CVE-2024-42179 | HCL MyXalytics is affected by sensitive information disclosure vulnerability | HCL Software | DRYiCE MyXalytics | Low | 2.0 | 2025-01-12 21:46:40 | Deep Dive |
| CVE-2024-42175 | HCL MyXalytics is affected by a weak input validation vulnerability | HCL Software | DRYiCE MyXalytics | Low | 2.6 | 2025-01-11 07:20:58 | Deep Dive |
| CVE-2024-42174 | HCL MyXalytics is affected by username enumeration vulnerability | HCL Software | DRYiCE MyXalytics | Low | 3.7 | 2025-01-11 07:04:25 | Deep Dive |
| CVE-2024-42173 | HCL MyXalytics is affected by an improper password policy implementation vulnerability | HCL Software | DRYiCE MyXalytics | Medium | 4.8 | 2025-01-11 06:54:34 | Deep Dive |
| CVE-2024-42172 | HCL MyXalytics is affected by broken authentication | HCL Software | DRYiCE MyXalytics | Medium | 5.3 | 2025-01-11 06:44:29 | Deep Dive |
| CVE-2024-42171 | HCL MyXalytics is affected by insufficient session expiration | HCL Software | DRYiCE MyXalytics | Medium | 6.4 | 2025-01-11 06:31:24 | Deep Dive |
| CVE-2024-42170 | HCL MyXalytics is affected by a session fixation vulnerability | HCL Software | DRYiCE MyXalytics | Medium | 6.8 | 2025-01-11 06:17:21 | Deep Dive |
| CVE-2024-42169 | HCL MyXalytics is affected by insecure direct object references | HCL Software | DRYiCE MyXalytics | High | 7.1 | 2025-01-11 02:31:23 | Deep Dive |
| CVE-2024-42168 | HCL MyXalytics is affected by out-of-band resource load (HTTP) vulnerability | HCL Software | DRYiCE MyXalytics | High | 8.9 | 2025-01-11 02:24:38 | Deep Dive |