cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-28008,https://securityvulnerability.io/vulnerability/CVE-2023-28008,HCL Workload Automation is vulnerable to XML External Entity (XXE) Injection,"HCL Workload Automation versions 9.4, 9.5, and 10.1 are susceptible to an XML External Entity Injection (XXE) vulnerability during XML data processing. This issue allows remote attackers to exploit the vulnerability, potentially leading to the disclosure of sensitive information or excessive consumption of memory resources. Proper validation and sanitization of XML inputs are crucial to mitigate the associated risks.",HCL Software,Workload Automation,8.1,HIGH,0.0014400000218302011,false,false,false,false,,false,false,2023-04-26T20:15:00.000Z,0
CVE-2023-28009,https://securityvulnerability.io/vulnerability/CVE-2023-28009,HCL Workload Automation is vulnerable to XML External Entity (XXE) Injection,"HCL Workload Automation is susceptible to an XML External Entity Injection attack, which occurs during the processing of XML data. This vulnerability allows a remote attacker to manipulate XML input to extract sensitive information or exploit system resources, leading to potential information exposure or denial of service.",HCL Software,Workload Automation,8.1,HIGH,0.0014400000218302011,false,false,false,false,,false,false,2023-04-26T20:15:00.000Z,0
CVE-2022-38661,https://securityvulnerability.io/vulnerability/CVE-2022-38661,HCL Workload Automation is affected by a vulnerability in Jlog component of the Master Domain Manager,"HCL Workload Automation could allow a local user to overwrite key system files which would cause the system to crash.
",Hcl Software,Hcl Workload Automation,6.2,MEDIUM,0.0004199999966658652,false,false,false,false,,false,false,2022-12-12T13:15:00.000Z,0