| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-42189 | HCL BigFix Web Reports might be subject to a Denial of Service (DoS) attack | HCL Software | HCL BigFix Platform | - | - | 2025-04-15 18:07:41 | Deep Dive |
| CVE-2024-42200 | HCL BigFix Web Reports is potentially susceptible to a Stored Cross-Site Scripting (XSS) attack | HCL Software | HCL BigFix Platform | - | - | 2025-04-15 18:00:18 | Deep Dive |
| CVE-2024-42208 | HCL Connections is vulnerable to an information disclosure vulnerability | HCL Software | HCL Connections | Low | 3.5 | 2025-04-04 05:23:00 | Deep Dive |
| CVE-2025-0278 | An internal path disclosure vulnerability affects HCL Traveler | HCL Software | HCL Traveler | Medium | 4.3 | 2025-04-03 22:08:00 | Deep Dive |
| CVE-2025-0279 | HCL Traveler is affected by generation of error messages containing sensitive information | HCL Software | HCL Traveler | Medium | 4.3 | 2025-04-03 21:48:01 | Deep Dive |
| CVE-2025-0272 | HCL DevOps Deploy / HCL Launch is susceptible to an HTML injection vulnerability | HCL Software | HCL DevOps Deploy / HCL Launch | Medium | 5.4 | 2025-04-03 14:56:13 | Deep Dive |
| CVE-2025-0257 | HCL DevOps Deploy / HCL Launch is susceptible to unauthorized access to other services | HCL Software | HCL DevOps Deploy / HCL Launch | Medium | 6.3 | 2025-04-02 22:04:02 | Deep Dive |
| CVE-2025-0273 | HCL DevOps Deploy / HCL Launch is susceptible to Insertion of Sensitive Information into Log File vulnerability | HCL Software | HCL DevOps Deploy / HCL Launch | Medium | 5.5 | 2025-03-27 05:03:12 | Deep Dive |
| CVE-2024-30155 | HCL SX is susceptible to cookie with Insecure, Improper, or Missing SameSite attribute vulnerability | HCL Software | HCL SX | Medium | 5.5 | 2025-03-26 07:59:52 | Deep Dive |
| CVE-2025-0255 | HCL DevOps Deploy / HCL Launch is susceptible to command injection vulnerability | HCL Software | HCL DevOps Deploy / HCL Launch | High | 7.2 | 2025-03-24 16:32:21 | Deep Dive |
| CVE-2025-0256 | HCL DevOps Deploy / HCL Launch is susceptible to a sensitive information disclosure | HCL Software | HCL DevOps Deploy / HCL Launch | Medium | 4.3 | 2025-03-24 15:35:38 | Deep Dive |
| CVE-2025-0254 | HCL Digital Experience components Ring API and dxclient may be vulnerable to man-in-the-middle (MitM) attacks prior to 9.5 CF226. | HCL Software | HCL Digital Experience | Medium | 5.9 | 2025-03-20 14:02:38 | Deep Dive |
| CVE-2024-42176 | HCL MyXalytics is affected by concurrent login vulnerability | HCL Software | HCL MyXalytics | Low | 2.6 | 2025-03-19 14:24:22 | Deep Dive |
| CVE-2024-30143 | A path traversal vulnerability in HCL AppScan Traffic Recorder | HCL Software | HCL AppScan Traffic Recorder | Medium | 4.3 | 2025-03-13 17:34:50 | Deep Dive |
| CVE-2024-30154 | HCL SX is susceptible to a Cross-Site Request Forgery (CSRF) vulnerability | HCL Software | HCL SX | Medium | 5.3 | 2025-03-03 18:10:54 | Deep Dive |
| CVE-2024-30150 | An unauthenticated privilege escalation vulnerability affects HCL MyCloud | HCL Software | MyCloud | Medium | 5.3 | 2025-02-25 22:21:29 | Deep Dive |
| CVE-2024-23563 | HCL Connections Docs is vulnerable to a sensitive information disclosure | HCL Software | Connections Docs | Low | 3.9 | 2025-02-12 13:47:51 | Deep Dive |
| CVE-2024-42207 | HCL iAutomate is affected by a session fixation vulnerability | HCL Software | iAutomate | Medium | 5.5 | 2025-02-05 15:11:01 | Deep Dive |
| CVE-2024-42187 | HCL BigFix Patch Download Plug-ins are affected by path traversal vulnerability | HCL Software | BigFix Patch Management Download Plug-ins | Medium | 5.3 | 2025-01-23 02:53:07 | Deep Dive |
| CVE-2024-42186 | HCL BigFix Patch Download Plug-ins are affected by an insecure protocol support | HCL Software | BigFix Patch Management Download Plug-ins | Low | 2.8 | 2025-01-23 02:47:41 | Deep Dive |