Unrated severityNVD Advisory· Published Dec 15, 2022· Updated Apr 18, 2025
HCL Digital Experience is susceptible to cross-site scripting (XSS)
CVE-2022-38653
Description
In HCL Digital Experience, customized XSS payload can be constructed such that it is served in the application unencoded.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: 8.5, 9.0, 9.5
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.