cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-45702,https://securityvulnerability.io/vulnerability/CVE-2023-45702,HCL Launch Agent as a Windows service is vulnerable to a Denial of Service,"An HCL UrbanCode Deploy Agent installed as a Windows service in a non-standard location could be subject to a denial of service attack by local accounts..
",HCL Software,HCL Launch,6.2,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2023-12-28T08:15:00.000Z,0
CVE-2023-45701,https://securityvulnerability.io/vulnerability/CVE-2023-45701,HCL Launch is susceptible to sensitive information disclosure,"HCL Launch could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.
",HCL Software,HCL Launch,4.3,MEDIUM,0.0009200000204145908,false,false,false,false,,false,false,2023-12-28T07:15:00.000Z,0
CVE-2023-45700,https://securityvulnerability.io/vulnerability/CVE-2023-45700,HCL Launch is susceptible to an HTML injection vulnerability,"HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure.
",HCL Software,HCL Launch,4.3,MEDIUM,0.0005300000193528831,false,false,false,false,,false,false,2023-12-21T01:15:00.000Z,0
CVE-2023-45703,https://securityvulnerability.io/vulnerability/CVE-2023-45703,HCL Launch is susceptible to a Denial of Service vulnerability,"HCL Launch may mishandle input validation of an uploaded archive file leading to a denial of service due to resource exhaustion.
",HCL Software,HCL Launch,5.3,MEDIUM,0.0007800000021234155,false,false,false,false,,false,false,2023-12-21T00:15:00.000Z,0
CVE-2023-23348,https://securityvulnerability.io/vulnerability/CVE-2023-23348,HCL Launch is vulnerable to sensitive information disclosure,"HCL Launch could disclose sensitive information if a manual edit of a configuration file has been performed.
",Hcl Software,Hcl Launch,5.5,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2023-07-10T18:15:00.000Z,0
CVE-2022-42452,https://securityvulnerability.io/vulnerability/CVE-2022-42452,,"HCL Launch is vulnerable to HTML injection.  HTML code is stored and included without being sanitized. This can lead to further attacks such as XSS and Open Redirections.
",Hcl Software,Hcl Launch,4.6,MEDIUM,0.000539999979082495,false,false,false,false,,false,false,2023-04-02T21:15:00.000Z,0
CVE-2022-42445,https://securityvulnerability.io/vulnerability/CVE-2022-42445,HCL Launch is vulnerable to Insufficiently Protected LDAP Search Credentials (CVE-2022-42445),"HCL Launch could allow a user with administrative privileges, including ""Manage Security"" permissions, the ability to recover a credential previously saved for performing authenticated LDAP searches.
",Hcl Software,Hcl Launch,4.9,MEDIUM,0.0006500000017695129,false,false,false,false,,false,false,2022-12-12T13:15:00.000Z,0
CVE-2021-27784,https://securityvulnerability.io/vulnerability/CVE-2021-27784,HCL Launch container images may contain non-unique https certificates and database encryption key,The provided HCL Launch Container images contain non-unique HTTPS certificates and a database encryption key. The fix provides directions and tools to replace the non-unique keys and certificates. This does not affect the standard installer packages.,Hcl Software,Hcl Launch,5.9,MEDIUM,0.0009500000160187483,false,false,false,false,,false,false,2022-10-31T22:15:00.000Z,0
CVE-2022-27551,https://securityvulnerability.io/vulnerability/CVE-2022-27551,HCL Launch could allow an authenticated user to obtain sensitive information (CVE-2022-27551),HCL Launch could allow an authenticated user to obtain sensitive information in some instances due to improper security checking.,Hcl Software,Hcl Launch,5.3,MEDIUM,0.0006500000017695129,false,false,false,false,,false,false,2022-08-03T20:15:00.000Z,0
CVE-2022-27549,https://securityvulnerability.io/vulnerability/CVE-2022-27549,HCL Launch could disclose sensitive database information to a local user in plain text.,HCL Launch may store certain data for recurring activities in a plain text format.,Hcl Software,Hcl Launch,4,MEDIUM,0.0004400000034365803,false,false,false,false,,false,false,2022-07-06T21:15:00.000Z,0
CVE-2022-27548,https://securityvulnerability.io/vulnerability/CVE-2022-27548,HCL Launch is vulnerable to information disclosure which can be read by a local user.,HCL Launch stores user credentials in plain clear text which can be read by a local user.,Hcl Software,Hcl Launch,4.9,MEDIUM,0.0004199999966658652,false,false,false,false,,false,false,2022-07-06T21:15:00.000Z,0