HCL Commerce is affected by an Insufficient Session Expiration vulnerability. After the session expires, in some circumstances, parts of the application are still accessible.
CPE | Name | Operator | Version |
---|---|---|---|
hcl_commerce | ge | 8.0.0.0 | |
hcl_commerce | lt | 8.0.4.28 | |
hcl_commerce | ge | 9.0.0.0 | |
hcl_commerce | lt | 9.0.1.18 | |
hcl_commerce | ge | 9.1.0 | |
hcl_commerce | lt | 9.1.9 |