Hcltech Appscan

Do you want an email whenever new security vulnerabilities are reported in Hcltech Appscan?

By the Year

In 2023 there have been 0 vulnerabilities in Hcltech Appscan . Appscan did not have any published security vulnerabilities last year.

Year	Vulnerabilities	Average Score
2023	0	0.00
2022	0	0.00
2021	0	0.00
2020	6	7.62
2019	0	0.00
2018	0	0.00

It may take a day or so for new Appscan vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Hcltech Appscan Security Vulnerabilities

"HCL AppScan Enterprise advisory API documentation is susceptible to clickjacking, which could

CVE-2019-4323 4.3 - Medium - July 07, 2020

"HCL AppScan Enterprise advisory API documentation is susceptible to clickjacking, which could allow an attacker to embed the contents of untrusted web pages in a frame."

Clickjacking

"HCL AppScan Enterprise is susceptible to Cross-Site Scripting while importing a specially crafted test policy

CVE-2019-4324 6.1 - Medium - July 07, 2020

"HCL AppScan Enterprise is susceptible to Cross-Site Scripting while importing a specially crafted test policy."

XSS

"HCL AppScan Enterprise uses hard-coded credentials

CVE-2019-4327 7.5 - High - April 21, 2020

"HCL AppScan Enterprise uses hard-coded credentials which can be exploited by attackers to get unauthorized access to application's encrypted files."

Use of Hard-coded Credentials

HCL AppScan Standard is vulnerable to XML External Entity Injection (XXE) attack when processing XML data

CVE-2019-4391 8.2 - High - April 07, 2020

HCL AppScan Standard is vulnerable to XML External Entity Injection (XXE) attack when processing XML data

XXE

HCL AppScan Standard is vulnerable to excessive authorization attempts

CVE-2019-4393 9.8 - Critical - April 07, 2020

HCL AppScan Standard is vulnerable to excessive authorization attempts

Improper Restriction of Excessive Authentication Attempts

HCL AppScan Standard Edition 9.0.3.13 and earlier uses hard-coded credentials

CVE-2019-4392 9.8 - Critical - February 14, 2020

HCL AppScan Standard Edition 9.0.3.13 and earlier uses hard-coded credentials which can be exploited by attackers to get unauthorized access to the system.

Use of Hard-coded Credentials

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Hcltech Appscan or by Hcltech? Click the Watch button to subscribe.

Hcltech
Vendor

Hcltech Appscan
Product

Hcltech Appscan

By the Year

Recent Hcltech Appscan Security Vulnerabilities

"HCL AppScan Enterprise advisory API documentation is susceptible to clickjacking, which could CVE-2019-4323 4.3 - Medium - July 07, 2020

"HCL AppScan Enterprise is susceptible to Cross-Site Scripting while importing a specially crafted test policy CVE-2019-4324 6.1 - Medium - July 07, 2020

"HCL AppScan Enterprise uses hard-coded credentials CVE-2019-4327 7.5 - High - April 21, 2020

HCL AppScan Standard is vulnerable to XML External Entity Injection (XXE) attack when processing XML data CVE-2019-4391 8.2 - High - April 07, 2020

HCL AppScan Standard is vulnerable to excessive authorization attempts CVE-2019-4393 9.8 - Critical - April 07, 2020

HCL AppScan Standard Edition 9.0.3.13 and earlier uses hard-coded credentials CVE-2019-4392 9.8 - Critical - February 14, 2020