CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-14222

HCL Digital Experience 8.5, 9.0, 9.5 is susceptible to cross site scripting (XSS). One subcomponent is vulnerable to reflected XSS. In reflected XSS, an attacker must induce a victim to click on a crafted URL from some delivery mechanism (email, other web site).

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 57.3%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0084769
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0084769

Products affected by CVE-2020-14222

Hcltech » Hcl Digital Experience » Version: 8.5

cpe:2.3:a:hcltech:hcl_digital_experience:8.5
Hcltech » Hcl Digital Experience » Version: 9.0

cpe:2.3:a:hcltech:hcl_digital_experience:9.0
Hcltech » Hcl Digital Experience » Version: 9.5

cpe:2.3:a:hcltech:hcl_digital_experience:9.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-14222

Products

Pricing

Contact Us