CVE-2023-45707 | THREATINT

Description

HCL Connections Docs is vulnerable to a cross-site scripting attack where an attacker may leverage this issue to execute arbitrary code. This may lead to credentials disclosure and possibly launch additional attacks.

PUBLISHED Reserved 2023-10-10 | Published 2024-06-08 | Updated 2024-08-02 | Assigner HCL

MEDIUM: 4.4CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N

Product status

Default status

unaffected

<= 2.0.2

affected

References

support.hcltechsw.com/...b_article&sysparm_article=KB0108427

cve.org (CVE-2023-45707)

nvd.nist.gov (CVE-2023-45707)

Download JSON

help @ threatint.eu