Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
HCL Launch is susceptible to sensitive information disclosure
Vulnerability Description
HCL Launch could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
N/A
Vulnerability Title
HCL Technologies HCL Launch 安全漏洞
Vulnerability Description
HCL Technologies HCL Launch是美国HCL Technologies公司的一款多功能的企业级持续交付自动化软件。用于处理 DevOps 中最复杂的部署流程。 HCL Launch 7.0 到 7.0.5.18、7.1 到 7.1.2.14、7.2 到 7.2.3.7、7.3 到 7.3.2.2版本存在安全漏洞,该漏洞源于当浏览器中返回详细的技术错误消息时,HCL Launch 可能允许远程攻击者获取敏感信息,可用于对系统的进一步攻击。
CVSS Information
N/A
Vulnerability Type
N/A