| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-23580 | HCL DRYiCE Optibot Reset Station is impacted by insecure encryption of One-Time Passwords (OTPs) | HCL Software | DRYiCE Optibot Reset Station | Medium | 6.5 | 2024-05-28 21:29:16 | Deep Dive |
| CVE-2024-23579 | HCL DRYiCE Optibot Reset Station is impacted by insecure encryption of security questions | HCL Software | DRYiCE Optibot Reset Station | Medium | 6.5 | 2024-05-28 21:25:18 | Deep Dive |
| CVE-2024-23556 | HCL BigFix Platform is impacted by a failure to restrict SSL/TLS renegotiation | HCL Software | BigFix Platform | Medium | 5.9 | 2024-05-17 23:40:50 | Deep Dive |
| CVE-2024-23554 | HCL BigFix Platform is susceptible to Cross-Site Request Forgery | HCL Software | BigFix Platform | Medium | 5.7 | 2024-05-17 23:31:40 | Deep Dive |
| CVE-2024-23583 | HCL BigFix Platform is susceptible to insufficiently protected credentials | HCL Software | BigFix Platform | Medium | 6.7 | 2024-05-17 23:06:36 | Deep Dive |
| CVE-2024-23576 | HCL Commerce is potentially affected by a denial of service and information disclosure vulnerability | HCL Software | Commerce | High | 7.1 | 2024-05-13 21:28:44 | Deep Dive |
| CVE-2023-37526 | HCL DRYiCE Lucy v9 (now AEX) is affected by a Cross Origin Resource Sharing (CORS) Vulnerability | HCL Software | DRYiCE Lucy | Medium | 6.5 | 2024-05-10 17:16:13 | Deep Dive |
| CVE-2024-23551 | HCL BigFix Compliance is potentially affected by Oracle database credentials stored at endpoint | HCL Software | BigFix Compliance | Medium | 6.5 | 2024-05-07 21:46:54 | Deep Dive |
| CVE-2024-30107 | HCL Connections is vulnerable to broken access control | HCL Software | Connections | Low | 3.5 | 2024-04-18 20:12:52 | Deep Dive |
| CVE-2024-23557 | HCL Connections is vulnerable to a user enumeration vulnerability | HCL Software | Connections | Low | 3.5 | 2024-04-18 18:21:19 | Deep Dive |
| CVE-2024-23558 | HCL DevOps Deploy / HCL Launch does not invalidate all session authentication cookies after logout | HCL Software | DevOps Deploy / Launch | Medium | 6.3 | 2024-04-15 21:00:12 | Deep Dive |
| CVE-2024-23561 | HCL DevOps Deploy / HCL Launch is vulnerable to sensitive information disclosure vulnerability | HCL Software | DevOps Deploy / Launch | Medium | 4.3 | 2024-04-15 20:20:51 | Deep Dive |
| CVE-2024-23560 | HCL DevOps Deploy / HCL Launch could be vulnerable to incomplete revocation of permissions when deleting a custom type | HCL Software | DevOps Deploy / Launch | Medium | 4.4 | 2024-04-15 19:22:57 | Deep Dive |
| CVE-2024-23559 | HCL DevOps Deploy / Launch is generating an obsolete HTTP header | HCL Software | DevOps Deploy / Launch | Medium | 6.1 | 2024-04-15 17:31:18 | Deep Dive |
| CVE-2023-50347 | Insecure SQL Interface affects HCL DRYiCE MyXalytics | HCL Software | DRYiCE MyXalytics | Low | 3.7 | 2024-04-10 01:17:11 | Deep Dive |
| CVE-2024-23584 | HCL BigFix Asset Discovery is affected by a security vulnerability | HCL Software | BigFix Enterprise Suite Asset Discovery | Medium | 6.6 | 2024-04-08 23:05:12 | Deep Dive |
| CVE-2024-23540 | HCL BigFix Inventory is vulnerable to path traversal | HCL Software | BigFix Inventory | Medium | 5.3 | 2024-04-03 16:32:52 | Deep Dive |
| CVE-2023-45715 | HCL BigFix Platform is susceptible to a Denial of Service attack | HCL Software | BigFix Platform | Low | 3.5 | 2024-03-28 14:26:33 | Deep Dive |
| CVE-2023-45706 | HCL BigFix Platform is susceptible to Cross Site Scripting (XSS) and/or Man in the Middle (MITM) attack | HCL Software | BigFix Platform | Low | 2.0 | 2024-03-28 14:19:41 | Deep Dive |
| CVE-2023-45705 | HCL BigFix Platform is susceptible to Server Side Request Forgery (SSRF) | HCL Software | BigFix Platform | Low | 3.5 | 2024-03-28 14:11:58 | Deep Dive |