Hcl Launch Security Vulnerabilities and Issues — Hcl Launch CVE List

Lucene search

HcltechswHcl Launch

7 matches found

cve•added 2024/12/06 3:15 p.m.•61 views

CVE-2024-42196

HCL Launch stores potentially sensitive information in log files that could be read by a local user with access to HTTP request logs.

6.2CVSS6AI score0.00021EPSS

cve•added 2024/12/05 5:15 a.m.•49 views

CVE-2024-42195

HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure.

6.8CVSS3.9AI score0.00099EPSS

cve•added 2024/04/15 9:15 p.m.•48 views

CVE-2024-23558

HCL DevOps Deploy / HCL Launch does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system.

6.3CVSS6.6AI score0.0009EPSS

cve•added 2024/04/15 6:15 p.m.•43 views

CVE-2024-23559

HCL DevOps Deploy / Launch is generating an obsolete HTTP header.

6.1CVSS6.9AI score0.00303EPSS

cve•added 2024/04/15 9:15 p.m.•42 views

CVE-2024-23561

HCL DevOps Deploy / HCL Launch is vulnerable to sensitive information disclosure vulnerability due to insufficient obfuscation of sensitive values.

4.3CVSS6.2AI score0.00281EPSS

cve•added 2024/04/15 8:15 p.m.•41 views

CVE-2024-23560

HCL DevOps Deploy / HCL Launch could be vulnerable to incomplete revocation of permissions when deleting a custom security resource type.