HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure.
Metrics
Affected Vendors & Products
References
History
Thu, 05 Dec 2024 11:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 05 Dec 2024 05:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure. | |
Title | HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection | |
Weaknesses | CWE-80 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: HCL
Published: 2024-12-05T04:47:28.191Z
Updated: 2024-12-05T11:13:25.028Z
Reserved: 2024-07-29T21:32:08.372Z
Link: CVE-2024-42195
Vulnrichment
Updated: 2024-12-05T11:05:47.799Z
NVD
Status : Received
Published: 2024-12-05T05:15:06.923
Modified: 2024-12-05T05:15:06.923
Link: CVE-2024-42195
Redhat
No data.