CVE-2021-27774

User input included in error response, which could be used in a phishing attack.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:hcltech:hcl_digital_experience:9.0:*:*:*:*:*:*:*
cpe:2.3:a:hcltech:hcl_digital_experience:9.5:*:*:*:*:*:*:*
cpe:2.3:a:hcltech:hcl_digital_experience:8.5:*:*:*:*:*:*:*

History

24 Sep 2022, 02:33

Type Values Removed Values Added
References (MISC) https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0100491 - (MISC) https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0100491 - Vendor Advisory
CPE cpe:2.3:a:hcltech:hcl_digital_experience:9.0:*:*:*:*:*:*:*
cpe:2.3:a:hcltech:hcl_digital_experience:9.5:*:*:*:*:*:*:*
cpe:2.3:a:hcltech:hcl_digital_experience:8.5:*:*:*:*:*:*:*
First Time Hcltech
Hcltech hcl Digital Experience
CWE CWE-20
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.4

22 Sep 2022, 21:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-09-22 21:15

Updated : 2022-09-24 02:33


NVD link : CVE-2021-27774

Mitre link : CVE-2021-27774


JSON object : View

Products Affected

hcltech

  • hcl_digital_experience
CWE
CWE-20

Improper Input Validation