| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-30135 | Sensitive Information Disclosure vulnerability affects DRYiCE AEX v10 | HCL Software | DRYiCE AEX | Low | 3.3 | 2024-06-28 07:22:28 | Deep Dive |
| CVE-2024-30111 | Missing Root Detection vulnerability affects DRYiCE AEX v10 | HCL Software | DRYiCE AEX | Low | 3.3 | 2024-06-28 06:39:36 | Deep Dive |
| CVE-2024-30110 | Lack of input validation vulnerability affects DRYiCE AEX v10 | HCL Software | DRYiCE AEX | Low | 3.7 | 2024-06-28 06:25:51 | Deep Dive |
| CVE-2024-30109 | Lack of Clickjacking Protection vulnerability affects DRYiCE AEX v10 | HCL Software | DRYiCE AEX | Low | 3.7 | 2024-06-28 05:40:33 | Deep Dive |
| CVE-2024-30112 | HCL Connections is vulnerable to a cross-site scripting (XSS) vulnerability | HCL Software | Connections | Medium | 5.4 | 2024-06-25 21:28:23 | Deep Dive |
| CVE-2023-37541 | HCL Connections is vulnerable to broken access control | HCL Software | Connections | Low | 3.5 | 2024-06-25 15:08:03 | Deep Dive |
| CVE-2024-30120 | HCL DRYiCE Optibot Reset Station is impacted by an Unused Parameter in the web application | HCL Software | DRYiCE Optibot Reset Station | Low | 2.9 | 2024-06-14 21:44:54 | Deep Dive |
| CVE-2024-30119 | HCL DRYiCE Optibot Reset Station is impacted by a missing Strict Transport Security Header | HCL Software | DRYiCE Optibot Reset Station | Low | 3.7 | 2024-06-14 21:34:55 | Deep Dive |
| CVE-2023-45707 | HCL Connections Docs is vulnerable to Cross-Site Scripting (XSS) | HCL Software | Connections Docs | Medium | 4.4 | 2024-06-08 15:10:33 | Deep Dive |
| CVE-2023-37539 | HCL Domino Catalog template is susceptible to a Stored Cross-Site Scripting (XSS) vulnerability | HCL Software | Domino Server | High | 8.4 | 2024-06-06 22:43:59 | Deep Dive |
| CVE-2024-23580 | HCL DRYiCE Optibot Reset Station is impacted by insecure encryption of One-Time Passwords (OTPs) | HCL Software | DRYiCE Optibot Reset Station | Medium | 6.5 | 2024-05-28 21:29:16 | Deep Dive |
| CVE-2024-23579 | HCL DRYiCE Optibot Reset Station is impacted by insecure encryption of security questions | HCL Software | DRYiCE Optibot Reset Station | Medium | 6.5 | 2024-05-28 21:25:18 | Deep Dive |
| CVE-2024-23556 | HCL BigFix Platform is impacted by a failure to restrict SSL/TLS renegotiation | HCL Software | BigFix Platform | Medium | 5.9 | 2024-05-17 23:40:50 | Deep Dive |
| CVE-2024-23554 | HCL BigFix Platform is susceptible to Cross-Site Request Forgery | HCL Software | BigFix Platform | Medium | 5.7 | 2024-05-17 23:31:40 | Deep Dive |
| CVE-2024-23583 | HCL BigFix Platform is susceptible to insufficiently protected credentials | HCL Software | BigFix Platform | Medium | 6.7 | 2024-05-17 23:06:36 | Deep Dive |
| CVE-2024-23576 | HCL Commerce is potentially affected by a denial of service and information disclosure vulnerability | HCL Software | Commerce | High | 7.1 | 2024-05-13 21:28:44 | Deep Dive |
| CVE-2023-37526 | HCL DRYiCE Lucy v9 (now AEX) is affected by a Cross Origin Resource Sharing (CORS) Vulnerability | HCL Software | DRYiCE Lucy | Medium | 6.5 | 2024-05-10 17:16:13 | Deep Dive |
| CVE-2024-23551 | HCL BigFix Compliance is potentially affected by Oracle database credentials stored at endpoint | HCL Software | BigFix Compliance | Medium | 6.5 | 2024-05-07 21:46:54 | Deep Dive |
| CVE-2024-30107 | HCL Connections is vulnerable to broken access control | HCL Software | Connections | Low | 3.5 | 2024-04-18 20:12:52 | Deep Dive |
| CVE-2024-23557 | HCL Connections is vulnerable to a user enumeration vulnerability | HCL Software | Connections | Low | 3.5 | 2024-04-18 18:21:19 | Deep Dive |