Hcl Digital Experience
by Hcl Software
CVEs (3)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-38653 | 0.00 | — | 0.00 | Dec 15, 2022 | In HCL Digital Experience, customized XSS payload can be constructed such that it is served in the application unencoded. | ||
| CVE-2022-38662 | 0.00 | — | 0.00 | Dec 15, 2022 | In HCL Digital Experience, URLs can be constructed to redirect users to untrusted sites. | ||
| CVE-2021-27774 | 0.00 | — | 0.00 | Sep 22, 2022 | User input included in error response, which could be used in a phishing attack. |
- CVE-2022-38653Dec 15, 2022risk 0.00cvss —epss 0.00
In HCL Digital Experience, customized XSS payload can be constructed such that it is served in the application unencoded.
- CVE-2022-38662Dec 15, 2022risk 0.00cvss —epss 0.00
In HCL Digital Experience, URLs can be constructed to redirect users to untrusted sites.
- CVE-2021-27774Sep 22, 2022risk 0.00cvss —epss 0.00
User input included in error response, which could be used in a phishing attack.