Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cross-origin resource sharing vulnerability affects HCL Compass
Vulnerability Description
HCL Compass is vulnerable to Cross-Origin Resource Sharing (CORS). This vulnerability can allow an unprivileged remote attacker to trick a legitimate user into accessing a special resource and executing a malicious request.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Vulnerability Type
N/A
Vulnerability Title
HCL Compass 跨站请求伪造漏洞
Vulnerability Description
HCL Technologies Compass是美国HCL Technologies公司的一个低代码变更管理软件。管理全方位的测试活动以及与开发人员工具的集成。 HCL Compass 存在安全漏洞,该漏洞源于存在跨资源共享 (CORS) 漏洞。受影响的产品和版本:HCL Compass 2.0.0至2.0.3版本,2.1.0版本,2.2.0版本。
CVSS Information
N/A
Vulnerability Type
N/A