Unrated severityNVD Advisory· Published Jan 3, 2024· Updated Jun 3, 2025

Path Traversal Arbitrary File Read affects DRYiCE MyXalytics

CVE-2023-45722

Description

HCL DRYiCE MyXalytics is impacted by path traversal arbitrary file read vulnerability because it uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory. The product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. Potential exploits can completely disrupt or take over the application.

Affected products

HCL Software/DRYiCE MyXalyticsllm-fuzzy
HCL Software/MyXalyticscpe-rescue
Range: 5.9, 6.0, 6.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.hcltechsw.com/csmmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000