CVE-2026-21826
6.1
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Exploitability: 2.8 / Impact: 2.7
Source: psirt@hcl.com (Secondary)
Description
HCL Digital Experience and HCL Digital Experience Compose could be susceptible to Host header injection. An attacker can manipulate the Host header and cause the application to behave in unexpected ways.
Affected (67)
Products: Hcltech: Digital Experience Compose, Digital Experience
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 9.5 |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Version 9.5 |
References (1)
Source: psirt@hcl.com
Vendor Advisory
Timeline
No history available yet.