Unrated severityNVD Advisory· Published Apr 24, 2025· Updated Apr 24, 2025
HCL Leap is affected by a Cross-site scripting (XSS) vulnerability
CVE-2023-37534
Description
Insufficient URI protocol whitelist in HCL Leap allows script injection through query parameters.
Affected products
2- HCL Software/HCL Leapv5Range: < 9.3.4
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.