cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-4099,https://securityvulnerability.io/vulnerability/CVE-2020-4099,HCL Verse for Android is susceptible to an APK signing key check vulnerability,"The application was signed using a key length less than or equal to 1024 bits, making it potentially vulnerable to forged digital signatures. An attacker could forge the same digital signature of the app after maliciously modifying the app.",Hcl Software,Hcl Verse For Android,5.9,MEDIUM,0.0007300000288523734,false,,false,false,false,,,false,false,,2022-11-01T18:15:00.000Z,0
CVE-2020-4100,https://securityvulnerability.io/vulnerability/CVE-2020-4100,Dynamic Code Loading Vulnerability in HCL Verse for Android,"The dynamic code loading mechanism in HCL Verse for Android allows certain components to be loaded conditionally rather than at startup. While this approach can enhance performance and support in-app updates, it introduces a potential risk if the code loading is not securely managed. If an attacker can manipulate the request for these dynamic components, they might execute unintended code, compromising the integrity and security of the application. Proper implementation and validation are essential to mitigate these risks and protect user data.",HCL Software,"""hcl Verse For Android""",4.4,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2020-07-15T12:31:11.000Z,0