| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-28019 | An SQL injection affects BigFix WebUI API | HCL Software | HCL BigFix WebUI API | Medium | 5.5 | 2023-07-18 17:57:23 | Deep Dive |
| CVE-2023-23348 | HCL Launch is vulnerable to sensitive information disclosure | HCL Software | HCL Launch | Medium | 5.1 | 2023-07-10 17:06:35 | Deep Dive |
| CVE-2023-23344 | HCL BigFix WebUI Insights is susceptible to a lack of sufficient authorization | HCL Software | HCL BigFix WebUI Insights | Low | 3.0 | 2023-06-23 05:02:53 | Deep Dive |
| CVE-2023-28016 | HCL BigFix OSD Bare Metal Server is affected by a host header injection vulnerability | HCL Software | HCL BigFix OSD Bare Metal Server | Low | 3.1 | 2023-06-22 22:18:21 | Deep Dive |
| CVE-2023-28006 | HCL BigFix OSD Bare Metal Server is affected by a weak cryptographic algorithm. | HCL Software | HCL BigFix OSD Bare Metal Server | High | 7.0 | 2023-06-22 22:07:58 | Deep Dive |
| CVE-2023-23343 | HCL BigFix OSD Bare Metal Server version 311.12 or lower is affected by a clickjacking vulnerability. | HCL Software | HCL BigFix OSD Bare Metal Server | Low | 2.4 | 2023-06-22 21:57:38 | Deep Dive |
| CVE-2023-28015 | HCL Domino AppDev Pack is susceptible to a User Account Enumeration vulnerability | HCL Software | Domino AppDev Pack | Medium | 5.3 | 2023-05-23 21:25:09 | Deep Dive |
| CVE-2023-28009 | HCL Workload Automation is vulnerable to XML External Entity (XXE) Injection | HCL Software | Workload Automation | Medium | 6.5 | 2023-04-26 19:38:55 | Deep Dive |
| CVE-2023-28008 | HCL Workload Automation is vulnerable to XML External Entity (XXE) Injection | HCL Software | Workload Automation | High | 7.1 | 2023-04-26 19:24:38 | Deep Dive |
| CVE-2022-42452 | HCL Technologies HCL Launch 跨站脚本漏洞 | HCL Software | HCL Launch | Medium | 4.6 | 2023-03-30 20:37:44 | Deep Dive |
| CVE-2022-42447 | Cross-origin resource sharing vulnerability affects HCL Compass | HCL Software | HCL Compass2.0 | Critical | 9.6 | 2023-03-27 22:22:30 | Deep Dive |
| CVE-2021-27788 | HCL Verse is susceptible to a Cross Site Scripting (XSS) vulnerability | HCL Software | Verse | High | 8.3 | 2023-03-10 04:13:06 | Deep Dive |
| CVE-2022-38657 | An open redirect to malicious sites affects HCL Leap | HCL Software | Leap | High | 8.2 | 2023-02-02 21:17:30 | Deep Dive |
| CVE-2021-27782 | HCL BigFix Mobile / Modern Client Management Server passwords are susceptible to a brute-force attack | HCL Software | BigFix Mobile | Medium | 5.4 | 2023-01-19 18:54:01 | Deep Dive |
| CVE-2022-38658 | HCL BigFix Server Automation (SA) is affected by a security vulnerability around Notification Service | HCL Software | BigFix Server Automation | High | 7.7 | 2022-12-22 18:52:53 | Deep Dive |
| CVE-2022-38655 | HCL BigFix WebUI is affected by a missing-permission-check vulnerability | HCL Software | BigFix WebUI | Medium | 6.4 | 2022-12-20 04:51:01 | Deep Dive |
| CVE-2022-44756 | HCL BigFix Insights for Vulnerability Remediation (IVR) is vulnerable to improper input validation | HCL Software | BigFix Insights for Vulnerability Remediation | Medium | 6.4 | 2022-12-19 21:17:58 | Deep Dive |
| CVE-2022-42454 | HCL BigFix Insights for Vulnerability Remediation (IVR) is vulnerable to improper certificate validation | HCL Software | BigFix Insights for Vulnerability Remediation | Medium | 6.4 | 2022-12-19 21:10:14 | Deep Dive |
| CVE-2022-42453 | HCL BigFix Platform is affected by insufficient warnings | HCL Software | BigFix Platform | Medium | 6.9 | 2022-12-17 19:03:25 | Deep Dive |
| CVE-2022-38659 | HCL BigFix Platform is affected by insecure credential storage | HCL Software | BigFix Platform | Medium | 6.0 | 2022-12-17 18:44:57 | Deep Dive |