Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Hcl_launch
(Hcltechsw)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 11 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-07-10 | CVE-2023-23348 | HCL Launch could disclose sensitive information if a manual edit of a configuration file has been performed. | Hcl_launch | 5.5 | ||
| 2024-02-03 | CVE-2024-23550 | HCL DevOps Deploy / HCL Launch (UCD) could disclose sensitive user information when installing the Windows agent. | Hcl_devops_deploy, Hcl_launch | 5.5 | ||
| 2023-12-28 | CVE-2023-45701 | HCL Launch could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. | Hcl_launch | 6.5 | ||
| 2023-12-28 | CVE-2023-45702 | An HCL UrbanCode Deploy Agent installed as a Windows service in a non-standard location could be subject to a denial of service attack by local accounts.. | Hcl_launch | 5.5 | ||
| 2023-12-21 | CVE-2023-45703 | HCL Launch may mishandle input validation of an uploaded archive file leading to a denial of service due to resource exhaustion. | Hcl_launch | 7.5 | ||
| 2023-12-21 | CVE-2023-45700 | HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure. | Hcl_launch | 5.4 | ||
| 2022-12-12 | CVE-2022-42445 | HCL Launch could allow a user with administrative privileges, including "Manage Security" permissions, the ability to recover a credential previously saved for performing authenticated LDAP searches. | Hcl_launch | 4.9 | ||
| 2023-04-02 | CVE-2022-42452 | HCL Launch is vulnerable to HTML injection. HTML code is stored and included without being sanitized. This can lead to further attacks such as XSS and Open Redirections. | Hcl_launch | 5.4 | ||
| 2022-07-06 | CVE-2022-27549 | HCL Launch may store certain data for recurring activities in a plain text format. | Hcl_launch | 5.5 | ||
| 2022-08-03 | CVE-2022-27551 | HCL Launch could allow an authenticated user to obtain sensitive information in some instances due to improper security checking. | Hcl_launch | 6.5 |