Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
HcltechWorkload Automation

2 matches found

CVE
CVEadded 2023/04/26 7:38 p.m.48 views

CVE-2023-28009

CVE-2023-28009 affects HCL Workload Automation. The vulnerability is an XML External Entity (XXE) injection in the XML processing path. Impact stated in sources: potential exposure of sensitive information and/or memory/resource exhaustion. Exploitation details are not provided in the documents; ...

8.1CVSS7.2AI score0.00757EPSS
CVE
CVEadded 2023/04/26 7:24 p.m.43 views

CVE-2023-28008

CVE-2023-28008 affects HCL Workload Automation versions 9.4, 9.5, and 10.1 where XML data is processed. The root cause is XML External Entity (XXE) injection in the XML processing path, enabling a remote attacker to access sensitive information or exhaust memory resources as described across mult...

8.1CVSS7.5AI score0.00821EPSS