Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Dryice Myxalytics Security Vulnerabilities - CVSS Score 9 - 10

cve
cve

CVE-2023-45722

HCL DRYiCE MyXalytics is impacted by path traversal arbitrary file read vulnerability because it uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory. The product does not properly neutralize special el...

9.8CVSS

9.2AI Score

0.001EPSS

2024-01-03 03:15 AM
18
cve
cve

CVE-2023-45723

HCL DRYiCE MyXalytics is impacted by path traversal vulnerability which allows file upload capability. Certain endpoints permit users to manipulate the path (including the file name) where these files are stored on the server.

9.8CVSS

9.3AI Score

0.001EPSS

2024-01-03 03:15 AM
24
cve
cve

CVE-2023-45724

HCL DRYiCE MyXalytics product is impacted by unauthenticated file upload vulnerability. The web application permits the upload of a certain file without requiring user authentication.

9.8CVSS

9.4AI Score

0.001EPSS

2024-01-03 03:15 AM
20
cve
cve

CVE-2023-50351

HCL DRYiCE MyXalytics is impacted by the use of an insecure key rotation mechanism which can allow an attacker to compromise the confidentiality or integrity of data.

9.1CVSS

9AI Score

0.001EPSS

2024-01-03 02:15 AM
18