Hcltechsw: >> Hcl Devops Deploy Security Vulnerabilities
HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure.
CVSS Score
3.1
EPSS Score
0.008
Published
2024-12-05
HCL DevOps Deploy / HCL Launch does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system.
CVSS Score
6.3
EPSS Score
0.001
Published
2024-04-15
HCL DevOps Deploy / HCL Launch is vulnerable to sensitive information disclosure vulnerability due to insufficient obfuscation of sensitive values.
CVSS Score
4.3
EPSS Score
0.004
Published
2024-04-15
HCL DevOps Deploy / HCL Launch could be vulnerable to incomplete revocation of permissions when deleting a custom security resource type.
CVSS Score
4.4
EPSS Score
0.001
Published
2024-04-15
HCL DevOps Deploy / Launch is generating an obsolete HTTP header.
CVSS Score
6.1
EPSS Score
0.004
Published
2024-04-15
HCL DevOps Deploy / HCL Launch (UCD) could disclose sensitive user information when installing the Windows agent.
CVSS Score
6.2
EPSS Score
0.001
Published
2024-02-03
Page 2