Hcltechsw: >> Hcl Launch >> 7.3.2 Security Vulnerabilities
HCL DevOps Deploy / HCL Launch (UCD) could disclose sensitive user information when installing the Windows agent.
CVSS Score
6.2
EPSS Score
0.001
Published
2024-02-03
An HCL UrbanCode Deploy Agent installed as a Windows service in a non-standard location could be subject to a denial of service attack by local accounts..
CVSS Score
6.2
EPSS Score
0.0
Published
2023-12-28
HCL Launch could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.
CVSS Score
4.3
EPSS Score
0.001
Published
2023-12-28
HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure.
CVSS Score
4.3
EPSS Score
0.002
Published
2023-12-21
HCL Launch may mishandle input validation of an uploaded archive file leading to a denial of service due to resource exhaustion.
CVSS Score
5.3
EPSS Score
0.002
Published
2023-12-21
Page 2