3.5
CVE-2024-42208
- EPSS 0.25%
- Veröffentlicht 04.04.2025 05:22:59
- Zuletzt bearbeitet 29.10.2025 14:58:16
- Quelle psirt@hcl.com
- CVE-Watchlists
- Unerledigt
HCL Connections is vulnerable to an information disclosure vulnerability
HCL Connections is vulnerable to an information disclosure vulnerability which could allow a user to obtain sensitive information they are not entitled to, caused by improper handling of request data.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Hcltech ≫ Connections Version7.0
Hcltech ≫ Connections Version8.0 Updatecumulative_release1
Hcltech ≫ Connections Version8.0 Updatecumulative_release2
Hcltech ≫ Connections Version8.0 Updatecumulative_release3
Hcltech ≫ Connections Version8.0 Updatecumulative_release4
Hcltech ≫ Connections Version8.0 Updatecumulative_release5
Hcltech ≫ Connections Version8.0 Updatecumulative_release6
Hcltech ≫ Connections Version8.0 Updatecumulative_release7
Hcltech ≫ Connections Version8.0 Updatecumulative_release8
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.25% | 0.163 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| psirt@hcl.com | 3.5 | 2.1 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
|
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
Für Zugriff zu Vulnerability Intelligence ist ein VulnDex Zugang erforderlich.
https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0120347