CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-42447

HCL Compass is vulnerable to Cross-Origin Resource Sharing (CORS). This vulnerability can allow an unprivileged remote attacker to trick a legitimate user into accessing a special resource and executing a malicious request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.6%

CVSS Severity

CVSS v3 Score 9.6

References

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0103581
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0103581

Products affected by CVE-2022-42447

Hcltech » Hcl Compass » Version: 2.0.0

cpe:2.3:a:hcltech:hcl_compass:2.0.0
Hcltech » Hcl Compass » Version: 2.0.1

cpe:2.3:a:hcltech:hcl_compass:2.0.1
Hcltech » Hcl Compass » Version: 2.0.2

cpe:2.3:a:hcltech:hcl_compass:2.0.2
Hcltech » Hcl Compass » Version: 2.0.3

cpe:2.3:a:hcltech:hcl_compass:2.0.3
Hcltech » Hcl Compass » Version: 2.1.0

cpe:2.3:a:hcltech:hcl_compass:2.1.0
Hcltech » Hcl Compass » Version: 2.2.0

cpe:2.3:a:hcltech:hcl_compass:2.2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-42447

Products

Pricing

Contact Us