漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
HCL DevOps Velocity is susceptible to a Denial of Service vulnerability
Vulnerability Description
Rate limiting for certain API calls is not being enforced, making HCL Velocity vulnerable to Denial of Service (DoS) attacks. An attacker could flood the system with a large number of requests, overwhelming its resources and causing it to become unresponsive to legitimate users. This vulnerability is fixed in 5.1.7.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H
Vulnerability Type
不加限制或调节的资源分配
Vulnerability Title
HCL Velocity 安全漏洞
Vulnerability Description
HCL Velocity是印度HCL公司的一个价值流管理和发布平台。 HCL Velocity存在安全漏洞,该漏洞源于未对某些API调用强制执行速率限制,可能导致拒绝服务攻击。
CVSS Information
N/A
Vulnerability Type
N/A