Hcl Launch

hcl_launch

Vendor: Hcltechsw • 25 CVEs

CVEs (25)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-42452 1Hcltechsw 1Hcl Launch Feb 12, 2025 Apr 2, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 HCL Launch is vulnerable to HTML injection. HTML code is stored and included without being sanitized. This can lead to further attacks such as XSS and Open Redirections.
CVE-2022-42445 1Hcltechsw 1Hcl Launch Apr 25, 2025 Dec 12, 2022 N/A· v4 4.9 MEDIUM· v3 N/A· v2 HCL Launch could allow a user with administrative privileges, including "Manage Security" permissions, the ability to recover a credential previously saved for performing authenticated LDAP searches.
CVE-2022-27551 1Hcltechsw 1Hcl Launch Nov 21, 2024 Aug 3, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 HCL Launch could allow an authenticated user to obtain sensitive information in some instances due to improper security checking.
CVE-2022-27549 1Hcltechsw 1Hcl Launch Nov 21, 2024 Jul 6, 2022 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 HCL Launch may store certain data for recurring activities in a plain text format.
CVE-2022-27548 1Hcltechsw 1Hcl Launch Nov 21, 2024 Jul 6, 2022 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 HCL Launch stores user credentials in plain clear text which can be read by a local user.