Shodan
Vulnerabilities
Vulnerable Software
Hcltech:  Security Vulnerabilities
CVE-2023-28010
In some configuration scenarios, the Domino server host name can be exposed. This information could be used to target future attacks.
CVSS Score
4.0
EPSS Score
0.001
Published
2023-09-08
CVE-2023-37512
When the app is put to the background and the user goes to the task switcher of iOS, the app snapshot is not blurred which may reveal sensitive information.
CVSS Score
3.3
EPSS Score
0.001
Published
2023-08-11
CVE-2023-37513
When the app is put to the background and the user goes to the task switcher of iOS, the app snapshot is not blurred which may reveal sensitive information.
CVSS Score
3.3
EPSS Score
0.001
Published
2023-08-11
CVE-2023-37511
If certain App Transport Security (ATS) settings are set in a certain manner, insecure loading of web content can be achieved.
CVSS Score
3.5
EPSS Score
0.002
Published
2023-08-11
CVE-2023-23342
If certain local files are manipulated in a certain manner, the validation to use the cryptographic keys can be circumvented. 
CVSS Score
6.6
EPSS Score
0.001
Published
2023-08-10
CVE-2023-23347
HCL DRYiCE iAutomate is affected by the use of a broken cryptographic algorithm. An attacker can potentially compromise the confidentiality and integrity of sensitive information.
CVSS Score
6.4
EPSS Score
0.0
Published
2023-08-09
CVE-2023-23346
HCL DRYiCE MyCloud is affected by the use of a broken cryptographic algorithm. An attacker can potentially compromise the confidentiality and integrity of sensitive information.
CVSS Score
6.4
EPSS Score
0.0
Published
2023-08-09
CVE-2023-37501
A Persistent XSS vulnerability can be carried out in a certain field of Unica Campaign.  An attacker could hijack a user's session and perform other attacks.
CVSS Score
8.1
EPSS Score
0.003
Published
2023-08-03
CVE-2023-37497
The Unica application exposes an API which accepts arbitrary XML input. By manipulating the given XML, an authenticated attacker with certain rights can successfully perform XML External Entity attacks (XXE) against the backend service.
CVSS Score
8.1
EPSS Score
0.001
Published
2023-08-03
CVE-2023-37498
A user is capable of assigning him/herself to arbitrary groups by reusing a POST request issued by an administrator.  It is possible that an attacker could potentially escalate their privileges.
CVSS Score
8.1
EPSS Score
0.003
Published
2023-08-03


Products
Pricing
Contact Us

Shodan ® - All rights reserved