CVE-2024-42175 | THREATINT

Description

HCL MyXalytics is affected by a weak input validation vulnerability. The application accepts special characters and there is no length validation. This can lead to security vulnerabilities like SQL injection, XSS, and buffer overflow.

PUBLISHED Reserved 2024-07-29 | Published 2025-01-11 | Updated 2025-01-13 | Assigner HCL

LOW: 2.6CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:N

Problem types

CWE-20 Improper Input Validation

Product status

Default status

unaffected

6.3

affected

References

support.hcl-software.com/...rticle&sysparm_article=KB0118149

cve.org (CVE-2024-42175)

nvd.nist.gov (CVE-2024-42175)

Download JSON