| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-0256 | HCL DevOps Deploy / HCL Launch is susceptible to a sensitive information disclosure | HCL Software | HCL DevOps Deploy / HCL Launch | Medium | 4.3 | 2025-03-24 15:35:38 | Deep Dive |
| CVE-2025-0254 | HCL Digital Experience components Ring API and dxclient may be vulnerable to man-in-the-middle (MitM) attacks prior to 9.5 CF226. | HCL Software | HCL Digital Experience | Medium | 5.9 | 2025-03-20 14:02:38 | Deep Dive |
| CVE-2024-42176 | HCL MyXalytics is affected by concurrent login vulnerability | HCL Software | HCL MyXalytics | Low | 2.6 | 2025-03-19 14:24:22 | Deep Dive |
| CVE-2024-30143 | A path traversal vulnerability in HCL AppScan Traffic Recorder | HCL Software | HCL AppScan Traffic Recorder | Medium | 4.3 | 2025-03-13 17:34:50 | Deep Dive |
| CVE-2024-30154 | HCL SX is susceptible to a Cross-Site Request Forgery (CSRF) vulnerability | HCL Software | HCL SX | Medium | 5.3 | 2025-03-03 18:10:54 | Deep Dive |
| CVE-2024-30150 | An unauthenticated privilege escalation vulnerability affects HCL MyCloud | HCL Software | MyCloud | Medium | 5.3 | 2025-02-25 22:21:29 | Deep Dive |
| CVE-2024-23563 | HCL Connections Docs is vulnerable to a sensitive information disclosure | HCL Software | Connections Docs | Low | 3.9 | 2025-02-12 13:47:51 | Deep Dive |
| CVE-2024-42207 | HCL iAutomate is affected by a session fixation vulnerability | HCL Software | iAutomate | Medium | 5.5 | 2025-02-05 15:11:01 | Deep Dive |
| CVE-2024-42187 | HCL BigFix Patch Download Plug-ins are affected by path traversal vulnerability | HCL Software | BigFix Patch Management Download Plug-ins | Medium | 5.3 | 2025-01-23 02:53:07 | Deep Dive |
| CVE-2024-42186 | HCL BigFix Patch Download Plug-ins are affected by an insecure protocol support | HCL Software | BigFix Patch Management Download Plug-ins | Low | 2.8 | 2025-01-23 02:47:41 | Deep Dive |
| CVE-2024-42185 | HCL BigFix Patch Download Plug-ins are affected by an insecure package which is susceptible to XML injection attacks | HCL Software | BigFix Patch Management Download Plug-ins | Low | 2.5 | 2025-01-23 02:10:03 | Deep Dive |
| CVE-2024-42184 | HCL BigFix Patch Download Plug-ins are affected by insecure support for file URI scheme | HCL Software | BigFix Patch Management Download Plug-ins | Low | 2.5 | 2025-01-23 01:59:01 | Deep Dive |
| CVE-2024-42183 | HCL BigFix Patch Download Plug-ins are affected by an arbitrary file download vulnerability | HCL Software | BigFix Patch Management Download Plug-ins | Low | 2.5 | 2025-01-23 01:42:47 | Deep Dive |
| CVE-2024-42182 | HCL BigFix Patch Download Plug-ins are affected by Server-Side Request Forgery (SSRF) vulnerability | HCL Software | BigFix Patch Management Download Plug-ins | Low | 2.5 | 2025-01-23 01:05:52 | Deep Dive |
| CVE-2024-42181 | HCL MyXalytics is affected by a cleartext transmission of sensitive information vulnerability | HCL Software | DRYiCE MyXalytics | Low | 1.6 | 2025-01-12 22:04:37 | Deep Dive |
| CVE-2024-42180 | HCL MyXalytics is affected by a malicious file upload vulnerability | HCL Software | DRYiCE MyXalytics | Low | 1.6 | 2025-01-12 21:53:03 | Deep Dive |
| CVE-2024-42179 | HCL MyXalytics is affected by sensitive information disclosure vulnerability | HCL Software | DRYiCE MyXalytics | Low | 2.0 | 2025-01-12 21:46:40 | Deep Dive |
| CVE-2024-42175 | HCL MyXalytics is affected by a weak input validation vulnerability | HCL Software | DRYiCE MyXalytics | Low | 2.6 | 2025-01-11 07:20:58 | Deep Dive |
| CVE-2024-42174 | HCL MyXalytics is affected by username enumeration vulnerability | HCL Software | DRYiCE MyXalytics | Low | 3.7 | 2025-01-11 07:04:25 | Deep Dive |
| CVE-2024-42173 | HCL MyXalytics is affected by an improper password policy implementation vulnerability | HCL Software | DRYiCE MyXalytics | Medium | 4.8 | 2025-01-11 06:54:34 | Deep Dive |