Lucene search
HistoryFeb 03, 2024 - 6:15 a.m.
CVE-2024-23550
hcl devops deploy
hcl launch
ucd
cve-2024-23550
vulnerability
windows agent
information disclosure
6.2 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
5.3 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
HCL DevOps Deploy / HCL Launch (UCD) could disclose sensitive user information when installing the Windows agent.
Affected configurations
Node
hcltechswhcl_devops_deployMatch8.0.0.0
ORhcltechswhcl_launchRange7.0.0.0–7.0.5.20
ORhcltechswhcl_launchRange7.1.0.0–7.1.2.16
ORhcltechswhcl_launchRange7.2.0.0–7.2.3.9
ORhcltechswhcl_launchRange7.3.0.0–7.3.2.4
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Launch / DevOps Deploy",
"vendor": "HCL Software",
"versions": [
{
"status": "affected",
"version": "7.0 - 7.0.5.19, 7.1 - 7.1.2.15, 7.2 - 7.2.3.8, 7.3 - 7.3.2.3, 8.0.0.0"
}
]
}
]Related
cvelist
cvelist
nvd
nvd
CVE-2024-23550
2024-02-03 06:15:48
prion
prion
Design/Logic Flaw
2024-02-03 06:15:00
6.2 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
5.3 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for CVE-2024-23550