Unrated severityNVD Advisory· Published Apr 10, 2024· Updated Oct 28, 2024

Insecure SQL Interface affects HCL DRYiCE MyXalytics

CVE-2023-50347

Description

HCL DRYiCE MyXalytics is impacted by an insecure SQL interface vulnerability, potentially giving an attacker the ability to execute custom SQL queries. A malicious user can run arbitrary SQL commands including changing system configuration.

Affected products

HCL Software/DRYiCE MyXalyticsllm-create
HCL Software/MyXalyticscpe-rescue
Range: 5.9, 6.0, 6.1, 6.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.hcltechsw.com/csmmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000