CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-38656

HCL Commerce, when using Elasticsearch, can allow a remote attacker to cause a denial of service attack on the site and make administrative changes.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 77.8%

CVSS Severity

CVSS v3 Score 8.6

References

Products affected by CVE-2022-38656

Hcltechsw » Hcl Commerce » Version: 9.1.10

cpe:2.3:a:hcltechsw:hcl_commerce:9.1.10
Hcltechsw » Hcl Commerce » Version: 9.1.11

cpe:2.3:a:hcltechsw:hcl_commerce:9.1.11
Hcltechsw » Hcl Commerce » Version: 9.1.8

cpe:2.3:a:hcltechsw:hcl_commerce:9.1.8
Hcltechsw » Hcl Commerce » Version: 9.1.9

cpe:2.3:a:hcltechsw:hcl_commerce:9.1.9

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved