Hcltech Digital Experience
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Hcltech Digital Experience.
By the Year
In 2025 there have been 0 vulnerabilities in Hcltech Digital Experience. Digital Experience did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 1 | 6.10 |
| 2022 | 1 | 5.40 |
| 2021 | 3 | 6.17 |
| 2020 | 1 | 6.10 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Digital Experience vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Hcltech Digital Experience Security Vulnerabilities
HCL Digital Experience is susceptible to cross site scripting (XSS)
CVE-2023-37538
6.1 - Medium
- October 11, 2023
HCL Digital Experience is susceptible to cross site scripting (XSS). One subcomponent is vulnerable to reflected XSS. In reflected XSS, an attacker must induce a victim to click on a crafted URL from some delivery mechanism (email, other web site).
XSS
In HCL Digital Experience, customized XSS payload can be constructed such
CVE-2022-38653
5.4 - Medium
- December 19, 2022
In HCL Digital Experience, customized XSS payload can be constructed such that it is served in the application unencoded.
XSS
In Digital Experience 8.5
CVE-2020-4081
6.1 - Medium
- February 02, 2021
In Digital Experience 8.5, 9.0, and 9.5, WSRP consumer is vulnerable to cross-site scripting (XSS).
XSS
HCL Digital Experience 8.5
CVE-2020-14221
4.9 - Medium
- February 02, 2021
HCL Digital Experience 8.5, 9.0, and 9.5 exposes information about the server to unauthorized users.
Information Disclosure
HCL Digital Experience 9.5 containers include vulnerabilities that could expose sensitive data to unauthorized parties via crafted requests
CVE-2020-14255
7.5 - High
- February 02, 2021
HCL Digital Experience 9.5 containers include vulnerabilities that could expose sensitive data to unauthorized parties via crafted requests. These affect containers only. These do not affect traditional on-premise installations.
Information Disclosure
HCL Digital Experience 8.5, 9.0, 9.5 is susceptible to cross-site scripting (XSS)
CVE-2020-14223
6.1 - Medium
- October 01, 2020
HCL Digital Experience 8.5, 9.0, 9.5 is susceptible to cross-site scripting (XSS). The vulnerability could be employed in a reflected or non-persistent XSS attack.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Hcltech Digital Experience or by Hcltech? Click the Watch button to subscribe.
