CPE Details
HCL SOFTWARE HCL Launch 7.2.0.0
7.2.0.0
2022-08-08
15h37 +00:00
15h37 +00:00
2022-08-09
09h52 +00:00
09h52 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
CPE Name: cpe:2.3:a:hcltechsw:hcl_launch:7.2.0.0:*:*:*:*:*:*:*
Informations
Vendor
hcltechswProduct
hcl_launchVersion
7.2.0.0Related CVE
| CVE ID | Published | Description | Score | Severity |
|---|---|---|---|---|
| HCL DevOps Deploy / HCL Launch (UCD) could disclose sensitive user information when installing the Windows agent. | 6.2 |
Medium |
||
| An HCL UrbanCode Deploy Agent installed as a Windows service in a non-standard location could be subject to a denial of service attack by local accounts.. | 6.2 |
Medium |
||
| HCL Launch could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. | 6.5 |
Medium |
||
| HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure. | 5.4 |
Medium |
||
| HCL Launch may mishandle input validation of an uploaded archive file leading to a denial of service due to resource exhaustion. | 7.5 |
High |
||
| HCL Launch could disclose sensitive information if a manual edit of a configuration file has been performed. | 5.5 |
Medium |
||
| HCL Launch is vulnerable to HTML injection. HTML code is stored and included without being sanitized. This can lead to further attacks such as XSS and Open Redirections. | 5.4 |
Medium |
||
| HCL Launch could allow a user with administrative privileges, including "Manage Security" permissions, the ability to recover a credential previously saved for performing authenticated LDAP searches. | 4.9 |
Medium |
||
| HCL Launch could allow an authenticated user to obtain sensitive information in some instances due to improper security checking. | 6.5 |
Medium |
2025©
tesweb SA
