Lucene search
K

94 matches found

CVE
CVE
added 2025/03/24 4:32 p.m.63 views

CVE-2025-0255

CVE-2025-0255 affects HCL DevOps Deploy / HCL Launch. The vulnerability is a command-injection flaw where a remote, authenticated attacker could execute arbitrary commands by sending specially crafted input containing special elements. Evidence from multiple sources confirms the core vulnerabilit...

7.2CVSS7.8AI score0.00624EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2025/03/24 4:32 p.m.10 views

CVE-2025-0255 HCL DevOps Deploy / HCL Launch is susceptible to command injection vulnerability

HCL DevOps Deploy / HCL Launch could allow a remote privileged authenticated attacker to execute arbitrary commands on the system by sending specially crafted input containing special elements...

7.2CVSS7.8AI score0.00624EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/24 4:32 p.m.21 views

CVE-2025-0255 HCL DevOps Deploy / HCL Launch is susceptible to command injection vulnerability

HCL DevOps Deploy / HCL Launch could allow a remote privileged authenticated attacker to execute arbitrary commands on the system by sending specially crafted input containing special elements...

7.2CVSS0.00624EPSS
Exploits0References1
OSV
OSV
added 2025/03/24 4:15 p.m.3 views

CVE-2025-0256

HCL DevOps Deploy / HCL Launch could allow an authenticated user to obtain sensitive information about other users on the system due to missing authorization for a function...

6.5CVSS5.8AI score0.00256EPSS
Exploits0References1
NVD
NVD
added 2025/03/24 4:15 p.m.14 views

CVE-2025-0256

HCL DevOps Deploy / HCL Launch could allow an authenticated user to obtain sensitive information about other users on the system due to missing authorization for a function...

6.5CVSS0.00256EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/24 3:35 p.m.13 views

CVE-2025-0256 HCL DevOps Deploy / HCL Launch is susceptible to a sensitive information disclosure

HCL DevOps Deploy / HCL Launch could allow an authenticated user to obtain sensitive information about other users on the system due to missing authorization for a function...

4.3CVSS0.00256EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/24 3:35 p.m.6 views

CVE-2025-0256 HCL DevOps Deploy / HCL Launch is susceptible to a sensitive information disclosure

HCL DevOps Deploy / HCL Launch could allow an authenticated user to obtain sensitive information about other users on the system due to missing authorization for a function...

4.3CVSS4.4AI score0.00256EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/24 12:0 a.m.4 views

HCL Launch和HCL DevOps Deploy 安全漏洞

HCL Launch and HCL DevOps Deploy are both products of HCL India.HCL Launch is a multi-functional, enterprise-grade continuous delivery automation software. Used to handle the most complex deployment processes in DevOps.HCL DevOps Deploy is an application. Can be mapped to your organizational...

6.5CVSS6.3AI score0.00256EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/24 12:0 a.m.5 views

HCL Launch和HCL DevOps Deploy 安全漏洞

HCL Launch and HCL DevOps Deploy are both products of HCL India.HCL Launch is a multi-functional, enterprise-grade continuous delivery automation software. Used to handle the most complex deployment processes in DevOps.HCL DevOps Deploy is an application. Can be mapped to your organizational...

7.2CVSS7.3AI score0.00624EPSS
Exploits0References1
NVD
NVD
added 2024/12/05 5:15 a.m.33 views

CVE-2024-42195

HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...

6.8CVSS0.00286EPSS
Exploits0References1
OSV
OSV
added 2024/12/05 5:15 a.m.6 views

CVE-2024-42195

HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...

6.8CVSS5.9AI score0.00286EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/05 4:47 a.m.34 views

CVE-2024-42195 HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection

HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...

3.1CVSS0.00286EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/05 4:47 a.m.9 views

CVE-2024-42195 HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection

HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...

3.1CVSS6.8AI score0.00286EPSS
Exploits0References1
CVE
CVE
added 2024/12/05 4:47 a.m.66 views

CVE-2024-42195

CVE-2024-42195 concerns HCL DevOps Deploy / HCL Launch, where HTML injection in the Web UI could allow embedding arbitrary HTML tags and potentially disclose sensitive information. The connected documents corroborate the vulnerability type (HTML injection) and affected software name, and note tha...

6.8CVSS3.9AI score0.00286EPSS
Exploits0References1Affected Software2
CNNVD
CNNVD
added 2024/12/05 12:0 a.m.3 views

HCL Launch和HCL DevOps Deploy 安全漏洞

HCL Launch and HCL DevOps Deploy are both products of HCL Corporation, U.S.A. HCL Launch is a multi-functional, enterprise-grade continuous delivery automation software. Used to handle the most complex deployment processes in DevOps.HCL DevOps Deploy is an application. Can be mapped to your...

6.8CVSS6.8AI score0.00286EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/05 12:0 a.m.3 views

PT-2024-29790 · Hcl · Hcl Devops Deploy +1

Name of the Vulnerable Software and Affected Versions: HCL DevOps Deploy / HCL Launch affected versions not specified Description: The issue allows a user to embed arbitrary HTML tags in the Web UI, potentially leading to sensitive information disclosure. This is due to an HTML injection...

6.8CVSS6.1AI score0.00286EPSS
Exploits0References5
NVD
NVD
added 2024/04/15 9:15 p.m.20 views

CVE-2024-23558

HCL DevOps Deploy / HCL Launch does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system...

6.3CVSS6.2AI score0.00308EPSS
Exploits0References1
OSV
OSV
added 2024/04/15 9:15 p.m.4 views

CVE-2024-23558

HCL DevOps Deploy / HCL Launch does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system...

6.3CVSS5.8AI score0.00308EPSS
Exploits0References1
CVE
CVE
added 2024/04/15 9:0 p.m.63 views

CVE-2024-23558

The CVE-2024-23558 entry concerns HCL DevOps Deploy / HCL Launch where logout does not invalidate the user session, enabling an authenticated user to impersonate another user on the system. Connected documents confirm the issue origin as a session invalidation failure after logout, with CVSS deta...

6.3CVSS6.6AI score0.00308EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2024/04/15 9:0 p.m.11 views

CVE-2024-23558 HCL DevOps Deploy / HCL Launch does not invalidate all session authentication cookies after logout

HCL DevOps Deploy / HCL Launch does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system...

6.3CVSS6.7AI score0.00308EPSS
Exploits0References1
Rows per page
Query Builder