VYPR

OneTest Performance

by HCL Software

CVEs (2)

  • CVE-2020-14246Feb 4, 2021
    risk 0.00cvss epss 0.01

    HCL OneTest Performance V9.5, V10.0, V10.1 uses basic authentication which is relatively weak. An attacker could potentially decode the encoded credentials.

  • CVE-2020-14247Feb 4, 2021
    risk 0.00cvss epss 0.01

    HCL OneTest Performance V9.5, V10.0, V10.1 contains an inadequate session timeout, which could allow an attacker time to guess and use a valid session ID.