Onetest Performance Security Vulnerabilities and Issues — Onetest Performance CVE List

Lucene search

HcltechswOnetest Performance

3 matches found

CVE•added 2021/02/04 7:15 a.m.•67 views

CVE-2020-14245

HCL OneTest UI V9.5, V10.0, and V10.1 does not perform authentication for functionality that either requires a provable user identity or consumes a significant amount of resources.

9.8CVSS9.5AI score0.00392EPSS

CVE•added 2021/02/04 7:15 a.m.•62 views

CVE-2020-14247

HCL OneTest Performance V9.5, V10.0, V10.1 contains an inadequate session timeout, which could allow an attacker time to guess and use a valid session ID.

6.5CVSS6.4AI score0.00186EPSS

CVE•added 2021/02/04 7:15 a.m.•61 views

CVE-2020-14246

HCL OneTest Performance V9.5, V10.0, V10.1 uses basic authentication which is relatively weak. An attacker could potentially decode the encoded credentials.

7.5CVSS7.6AI score0.0014EPSS