Hcltechsw Hcl Commerce
By the Year
In 2024 there have been 0 vulnerabilities in Hcltechsw Hcl Commerce . Hcl Commerce did not have any published security vulnerabilities last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 0 | 0.00 |
2022 | 3 | 6.03 |
2021 | 1 | 9.10 |
2020 | 0 | 0.00 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new Hcl Commerce vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Hcltechsw Hcl Commerce Security Vulnerabilities
HCL Commerce, when using Elasticsearch, can
CVE-2022-38656
9.8 - Critical
- December 12, 2022
HCL Commerce, when using Elasticsearch, can allow a remote attacker to cause a denial of service attack on the site and make administrative changes.
HCL Commerce's Remote Store server could allow a local attacker to obtain sensitive personal information
CVE-2021-27785
5 - Medium
- July 30, 2022
HCL Commerce's Remote Store server could allow a local attacker to obtain sensitive personal information. The vulnerability requires the victim to first perform a particular operation on the website.
Insufficiently Protected Credentials
HCL Commerce is affected by an Insufficient Session Expiration vulnerability
CVE-2021-27751
3.3 - Low
- May 06, 2022
HCL Commerce is affected by an Insufficient Session Expiration vulnerability. After the session expires, in some circumstances, parts of the application are still accessible.
Insufficient Session Expiration
" Security vulnerability in HCL Commerce Management Center
CVE-2021-27741
9.1 - Critical
- August 13, 2021
" Security vulnerability in HCL Commerce Management Center allowing XML external entity (XXE) injection"
XXE
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Hcltechsw Hcl Commerce or by Hcltechsw? Click the Watch button to subscribe.