Vulnerability CVE-2023-37526
Published: 2024-05-14

Description:
HCL DRYiCE Lucy (now AEX) is affected by a Cross Origin Resource Sharing (CORS) vulnerability. The mobile app is vulnerable to a CORS misconfiguration which could potentially allow unauthorized access to the application resources from any web domain and enable cache poisoning attacks.

 References:
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0113032
Copyright 2026, cxsecurity.com

 

Back to Top