CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-23557

HCL Connections contains a user enumeration vulnerability. Certain actions could allow an attacker to determine if the user is valid or not, leading to a possible brute force attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.9%

CVSS Severity

CVSS v3 Score 3.5

References

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0112488
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0112488

Products affected by CVE-2024-23557

Hcltech » Connections » Version: 7.0

cpe:2.3:a:hcltech:connections:7.0
Hcltech » Connections » Version: 8.0

cpe:2.3:a:hcltech:connections:8.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-23557

Products

Pricing

Contact Us