cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-45702,https://securityvulnerability.io/vulnerability/CVE-2023-45702,HCL Launch Agent as a Windows service is vulnerable to a Denial of Service,"An HCL UrbanCode Deploy Agent installed as a Windows service in a non-standard location could be subject to a denial of service attack by local accounts..
",HCL Software,HCL Launch,6.2,MEDIUM,0.0004299999854993075,false,,false,false,false,,,false,false,,2023-12-28T08:15:00.000Z,0
CVE-2023-45701,https://securityvulnerability.io/vulnerability/CVE-2023-45701,HCL Launch is susceptible to sensitive information disclosure,"HCL Launch could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.
",HCL Software,HCL Launch,4.3,MEDIUM,0.0009200000204145908,false,,false,false,false,,,false,false,,2023-12-28T07:15:00.000Z,0
CVE-2023-45700,https://securityvulnerability.io/vulnerability/CVE-2023-45700,HCL Launch is susceptible to an HTML injection vulnerability,"HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure.
",HCL Software,HCL Launch,4.3,MEDIUM,0.0005300000193528831,false,,false,false,false,,,false,false,,2023-12-21T01:15:00.000Z,0
CVE-2023-45703,https://securityvulnerability.io/vulnerability/CVE-2023-45703,HCL Launch is susceptible to a Denial of Service vulnerability,"HCL Launch may mishandle input validation of an uploaded archive file leading to a denial of service due to resource exhaustion.
",HCL Software,HCL Launch,5.3,MEDIUM,0.0007800000021234155,false,,false,false,false,,,false,false,,2023-12-21T00:15:00.000Z,0
CVE-2023-23348,https://securityvulnerability.io/vulnerability/CVE-2023-23348,HCL Launch is vulnerable to sensitive information disclosure,"HCL Launch could disclose sensitive information if a manual edit of a configuration file has been performed.
",Hcl Software,Hcl Launch,5.5,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2023-07-10T18:15:00.000Z,0
CVE-2022-42452,https://securityvulnerability.io/vulnerability/CVE-2022-42452,HTML Injection Vulnerability in HCL Launch by HCL Technologies,"HCL Launch contains a vulnerability that allows HTML injection due to unsanitized input. Malicious users can exploit this flaw to execute cross-site scripting (XSS) attacks or redirect unsuspecting users to harmful sites, posing significant security risks to applications leveraging this platform.",HCL Software Software,HCL Software Launch,5.4,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2023-04-02T21:15:00.000Z,0
CVE-2022-42445,https://securityvulnerability.io/vulnerability/CVE-2022-42445,HCL Launch is vulnerable to Insufficiently Protected LDAP Search Credentials (CVE-2022-42445),"HCL Launch could allow a user with administrative privileges, including ""Manage Security"" permissions, the ability to recover a credential previously saved for performing authenticated LDAP searches.
",Hcl Software,Hcl Launch,4.9,MEDIUM,0.0006500000017695129,false,,false,false,false,,,false,false,,2022-12-12T13:15:00.000Z,0
CVE-2021-27784,https://securityvulnerability.io/vulnerability/CVE-2021-27784,HCL Launch container images may contain non-unique https certificates and database encryption key,The provided HCL Launch Container images contain non-unique HTTPS certificates and a database encryption key. The fix provides directions and tools to replace the non-unique keys and certificates. This does not affect the standard installer packages.,Hcl Software,Hcl Launch,5.9,MEDIUM,0.0009500000160187483,false,,false,false,false,,,false,false,,2022-10-31T22:15:00.000Z,0
CVE-2022-27551,https://securityvulnerability.io/vulnerability/CVE-2022-27551,HCL Launch could allow an authenticated user to obtain sensitive information (CVE-2022-27551),HCL Launch could allow an authenticated user to obtain sensitive information in some instances due to improper security checking.,Hcl Software,Hcl Launch,5.3,MEDIUM,0.0006500000017695129,false,,false,false,false,,,false,false,,2022-08-03T20:15:00.000Z,0
CVE-2022-27549,https://securityvulnerability.io/vulnerability/CVE-2022-27549,HCL Launch could disclose sensitive database information to a local user in plain text.,HCL Launch may store certain data for recurring activities in a plain text format.,Hcl Software,Hcl Launch,4,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-07-06T21:15:00.000Z,0
CVE-2022-27548,https://securityvulnerability.io/vulnerability/CVE-2022-27548,HCL Launch is vulnerable to information disclosure which can be read by a local user.,HCL Launch stores user credentials in plain clear text which can be read by a local user.,Hcl Software,Hcl Launch,4.9,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2022-07-06T21:15:00.000Z,0