Unrated severityNVD Advisory· Published Dec 15, 2022· Updated Apr 18, 2025
HCL Digital Experience is susceptible to cross-site scripting (XSS)
CVE-2022-38653
Description
In HCL Digital Experience, customized XSS payload can be constructed such that it is served in the application unencoded.
Affected products
1- Range: 8.5, 9.0, 9.5
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.