HCL SOFTWARE HCL Launch 7.3.2.3

CPE Details

HCL SOFTWARE HCL Launch 7.3.2.3
hcltechsw
hcl_launch
7.3.2.3
2024-01-02
18h44 +00:00
2024-01-02
18h44 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:hcltechsw:hcl_launch:7.3.2.3:*:*:*:*:*:*:*

Informations

Vendor

hcltechsw

Product

hcl_launch

Version

7.3.2.3

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2025-0272 2025-04-03 14h56 +00:00 HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure.
7.6
Haute
CVE-2025-0257 2025-04-02 22h04 +00:00 HCL DevOps Deploy / HCL Launch could allow unauthorized access to other services or potential exposure of sensitive data due to missing authentication in its Agent Relay service.
7.5
Haute
CVE-2025-0273 2025-03-27 05h03 +00:00 HCL DevOps Deploy / HCL Launch stores potentially sensitive authentication token information in log files that could be read by a local user.
5.5
Moyen
CVE-2025-0255 2025-03-24 16h32 +00:00 HCL DevOps Deploy / HCL Launch could allow a remote privileged authenticated attacker to execute arbitrary commands on the system by sending specially crafted input containing special elements.
7.2
Haute
CVE-2025-0256 2025-03-24 15h35 +00:00 HCL DevOps Deploy / HCL Launch could allow an authenticated user to obtain sensitive information about other users on the system due to missing authorization for a function.
6.5
Moyen
CVE-2024-42195 2024-12-05 04h47 +00:00 HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure.
6.8
Moyen
CVE-2024-23558 2024-04-15 21h00 +00:00 HCL DevOps Deploy / HCL Launch does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system.
6.3
Moyen
CVE-2024-23561 2024-04-15 20h20 +00:00 HCL DevOps Deploy / HCL Launch is vulnerable to sensitive information disclosure vulnerability due to insufficient obfuscation of sensitive values.
4.3
Moyen
CVE-2024-23560 2024-04-15 19h22 +00:00 HCL DevOps Deploy / HCL Launch could be vulnerable to incomplete revocation of permissions when deleting a custom security resource type.
4.9
Moyen
CVE-2024-23559 2024-04-15 17h31 +00:00 HCL DevOps Deploy / Launch is generating an obsolete HTTP header.
6.1
Moyen
CVE-2024-23550 2024-02-03 05h32 +00:00 HCL DevOps Deploy / HCL Launch (UCD) could disclose sensitive user information when installing the Windows agent.
6.2
Moyen
Les informations affichées sur CVE Find proviennent de plusieurs sources de référence rigoureusement sélectionnées. Les données CVE sont fournies par MITRE Corporation et la National Vulnerability Database (NVD). Le catalogue des vulnérabilités activement exploitées (KEV) provient de la Cybersecurity and Infrastructure Security Agency (CISA), tandis que les scores EPSS sont issus de FIRST.org. Enfin, les données relatives aux faiblesses logicielles (CWE) et aux schémas d'attaque courants (CAPEC) sont maintenues par MITRE Corporation, et les informations sur les configurations logicielles et matérielles (CPE) proviennent du NVD.