6.1
CVE-2026-21826
- EPSS 0.14%
- Veröffentlicht 05.06.2026 05:58:31
- Zuletzt bearbeitet 10.06.2026 19:24:47
- Quelle psirt@hcl.com
- CVE-Watchlists
- Unerledigt
HCL Digital Experience and HCL Digital Experience Compose could be susceptible to Host header injection
HCL Digital Experience and HCL Digital Experience Compose could be susceptible to Host header injection. An attacker can manipulate the Host header and cause the application to behave in unexpected ways.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Hcltech ≫ Digital Experience Compose Version9.5 Update-
Hcltech ≫ Digital Experience Compose Version9.5 Updatecf224
Hcltech ≫ Digital Experience Compose Version9.5 Updatecf225
Hcltech ≫ Digital Experience Compose Version9.5 Updatecf226
Hcltech ≫ Digital Experience Compose Version9.5 Updatecf227
Hcltech ≫ Digital Experience Compose Version9.5 Updatecf228
Hcltech ≫ Digital Experience Compose Version9.5 Updatecf229
Hcltech ≫ Digital Experience Compose Version9.5 Updatecf230
Hcltech ≫ Digital Experience Compose Version9.5 Updatecf231
Hcltech ≫ Digital Experience Compose Version9.5 Updatecf232
Hcltech ≫ Digital Experience Compose Version9.5 Updatecf233
Hcltech ≫ Digital Experience Compose Version9.5 Updatecf234
Hcltech ≫ Digital Experience Version9.5 Update-
Hcltech ≫ Digital Experience Version9.5 Updatecf17
Hcltech ≫ Digital Experience Version9.5 Updatecf171
Hcltech ≫ Digital Experience Version9.5 Updatecf172
Hcltech ≫ Digital Experience Version9.5 Updatecf173
Hcltech ≫ Digital Experience Version9.5 Updatecf18
Hcltech ≫ Digital Experience Version9.5 Updatecf181
Hcltech ≫ Digital Experience Version9.5 Updatecf182
Hcltech ≫ Digital Experience Version9.5 Updatecf183
Hcltech ≫ Digital Experience Version9.5 Updatecf184
Hcltech ≫ Digital Experience Version9.5 Updatecf19
Hcltech ≫ Digital Experience Version9.5 Updatecf191
Hcltech ≫ Digital Experience Version9.5 Updatecf192
Hcltech ≫ Digital Experience Version9.5 Updatecf193
Hcltech ≫ Digital Experience Version9.5 Updatecf194
Hcltech ≫ Digital Experience Version9.5 Updatecf195
Hcltech ≫ Digital Experience Version9.5 Updatecf196
Hcltech ≫ Digital Experience Version9.5 Updatecf197
Hcltech ≫ Digital Experience Version9.5 Updatecf198
Hcltech ≫ Digital Experience Version9.5 Updatecf199
Hcltech ≫ Digital Experience Version9.5 Updatecf200
Hcltech ≫ Digital Experience Version9.5 Updatecf201
Hcltech ≫ Digital Experience Version9.5 Updatecf202
Hcltech ≫ Digital Experience Version9.5 Updatecf203
Hcltech ≫ Digital Experience Version9.5 Updatecf204
Hcltech ≫ Digital Experience Version9.5 Updatecf205
Hcltech ≫ Digital Experience Version9.5 Updatecf206
Hcltech ≫ Digital Experience Version9.5 Updatecf207
Hcltech ≫ Digital Experience Version9.5 Updatecf208
Hcltech ≫ Digital Experience Version9.5 Updatecf209
Hcltech ≫ Digital Experience Version9.5 Updatecf210
Hcltech ≫ Digital Experience Version9.5 Updatecf211
Hcltech ≫ Digital Experience Version9.5 Updatecf212
Hcltech ≫ Digital Experience Version9.5 Updatecf213
Hcltech ≫ Digital Experience Version9.5 Updatecf214
Hcltech ≫ Digital Experience Version9.5 Updatecf215
Hcltech ≫ Digital Experience Version9.5 Updatecf216
Hcltech ≫ Digital Experience Version9.5 Updatecf217
Hcltech ≫ Digital Experience Version9.5 Updatecf218
Hcltech ≫ Digital Experience Version9.5 Updatecf219
Hcltech ≫ Digital Experience Version9.5 Updatecf220
Hcltech ≫ Digital Experience Version9.5 Updatecf221
Hcltech ≫ Digital Experience Version9.5 Updatecf222
Hcltech ≫ Digital Experience Version9.5 Updatecf223
Hcltech ≫ Digital Experience Version9.5 Updatecf224
Hcltech ≫ Digital Experience Version9.5 Updatecf225
Hcltech ≫ Digital Experience Version9.5 Updatecf226
Hcltech ≫ Digital Experience Version9.5 Updatecf227
Hcltech ≫ Digital Experience Version9.5 Updatecf228
Hcltech ≫ Digital Experience Version9.5 Updatecf229
Hcltech ≫ Digital Experience Version9.5 Updatecf230
Hcltech ≫ Digital Experience Version9.5 Updatecf231
Hcltech ≫ Digital Experience Version9.5 Updatecf232
Hcltech ≫ Digital Experience Version9.5 Updatecf233
Hcltech ≫ Digital Experience Version9.5 Updatecf234
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.14% | 0.04 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| psirt@hcl.com | 6.1 | 2.8 | 2.7 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
|
CWE-601 URL Redirection to Untrusted Site ('Open Redirect')
The web application accepts a user-controlled input that specifies a link to an external site, and uses that link in a redirect.
https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0130849