| |
Vulnerability CVE-2020-14275
Published: 2021-01-12
| Description: |
Security vulnerability in HCL Commerce 9.0.0.5 through 9.0.0.13, 9.0.1.0 through 9.0.1.14 and 9.1 through 9.1.4 could allow denial of service, disclosure of user personal data, and performing of unauthorized administrative operations. |
Type:
NVD-CWE-noinfo
CVSS2 => (AV:N/AC:L/Au:N/C:P/I:P/A:P)
| CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
7.5/10 |
6.4/10 |
10/10 |
| Exploit range |
Attack complexity |
Authentication |
Remote |
Low |
No required |
| Confidentiality impact |
Integrity impact |
Availability impact |
Partial |
Partial |
Partial |
References: |
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0086271
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
