VYPR

Glovius Cloud

by HCL Software

CVEs (2)

  • CVE-2025-62346MedNov 20, 2025
    risk 0.44cvss 6.8epss 0.00

    A Cross-Site Request Forgery (CSRF) vulnerability was identified in HCL Glovius Cloud. An attacker can force a user's web browser to execute an unwanted, malicious action on a trusted site where the user is authenticated, specifically on one endpoint.

  • CVE-2024-23589MedMay 30, 2025
    risk 0.44cvss 6.8epss 0.00

    Due to outdated Hash algorithm, HCL Glovius Cloud could allow attackers to guess the input data using brute-force or dictionary attacks efficiently using modern hardware such as GPUs or ASICs