RSS   Vulnerabilities for 'Appscan'   RSS

2020-07-07
 
CVE-2019-4324

CWE-79
 

 
"HCL AppScan Enterprise is susceptible to Cross-Site Scripting while importing a specially crafted test policy."

 
 
CVE-2019-4323

CWE-1021
 

 
"HCL AppScan Enterprise advisory API documentation is susceptible to clickjacking, which could allow an attacker to embed the contents of untrusted web pages in a frame."

 
2020-04-21
 
CVE-2019-4327

CWE-798
 

 
"HCL AppScan Enterprise uses hard-coded credentials which can be exploited by attackers to get unauthorized access to application's encrypted files."

 
2020-04-07
 
CVE-2019-4393

CWE-307
 

 
HCL AppScan Standard is vulnerable to excessive authorization attempts

 
 
CVE-2019-4391

CWE-611
 

 
HCL AppScan Standard is vulnerable to XML External Entity Injection (XXE) attack when processing XML data

 
2020-02-14
 
CVE-2019-4392

CWE-798
 

 
HCL AppScan Standard Edition 9.0.3.13 and earlier uses hard-coded credentials which can be exploited by attackers to get unauthorized access to the system.

 

 >>> Vendor: Hcltech 11 Products
Legacy ivr firmware
Appscan source
Appscan
Self-service application
Connections
Hcl nomad
Hcl digital experience
Marketing campaign
Bigfix webui
Bigfix platform
Digital experience


Copyright 2020, cxsecurity.com

 

Back to Top