Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8
CVE-2025-31998
- EPSS 0.06%
- Veröffentlicht 12.10.2025 02:41:16
- Zuletzt bearbeitet 29.10.2025 17:20:08
HCL Unica Centralized Offer Management is vulnerable to poor unhandled exceptions which exposes sensitive information. An attacker can exploit use this information to exploit known vulnerabilities launch targeted attacks, such as remote code executi...
7.5
CVE-2025-31997
- EPSS 0.04%
- Veröffentlicht 12.10.2025 02:27:25
- Zuletzt bearbeitet 29.10.2025 17:27:23
HCL Unica Centralized Offer Management is vulnerable to Insecure Direct Object References (IDOR). An attacker can bypass authorization and access resources in the system directly, for example database records or files.
9.8
CVE-2025-31993
- EPSS 0.04%
- Veröffentlicht 12.10.2025 02:23:53
- Zuletzt bearbeitet 29.10.2025 17:35:58
HCL Unica Centralized Offer Management is vulnerable to a potential Server-Side Request Forgery (SSRF). An attacker can exploit improper input validation by submitting maliciously crafted input to a target application running on a server.
1