Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
HCL DRYiCE Lucy v9 (now AEX) is affected by a Cross Origin Resource Sharing (CORS) Vulnerability
Vulnerability Description
HCL DRYiCE Lucy (now AEX) is affected by a Cross Origin Resource Sharing (CORS) vulnerability. The mobile app is vulnerable to a CORS misconfiguration which could potentially allow unauthorized access to the application resources from any web domain and enable cache poisoning attacks.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Vulnerability Type
N/A
Vulnerability Title
HCL DRYiCE Lucy 安全漏洞
Vulnerability Description
HCL Technologies HCL DRYiCE Lucy是美国HCL Technologies公司的一款人工智能驱动的虚拟助理。 HCL DRYiCE Lucy存在安全漏洞,该漏洞源于容易受到 CORS 错误配置的影响。
CVSS Information
N/A
Vulnerability Type
N/A