CVE-2024-23550

Published: Feb 3, 2024Modified: Jun 3, 2025

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

HCL DevOps Deploy / HCL Launch (UCD) could disclose sensitive user information when installing the Windows agent.

Affected (5)

Products: Hcltechsw: Hcl Devops Deploy, Hcl Launch

2 products

Hcl Devops Deploy

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Hcltechsw Hcl Devops Deploy	Version 8.0.0.0
Hcltechsw Hcl Launch	From 7.0.0.0 to 7.0.5.20
Hcltechsw Hcl Launch	From 7.1.0.0 to 7.1.2.16
Hcltechsw Hcl Launch	From 7.2.0.0 to 7.2.3.9
Hcltechsw Hcl Launch	From 7.3.0.0 to 7.3.2.4

Related CWEs

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (2)

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0110334

Source: psirt@hcl.com

Vendor Advisory

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0110334

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.