exploitDog

GHSA-7ghw-g5qp-jp54

Опубликовано: 03 апр. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure.

HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure.

Ссылки

EPSS

Процентиль: 37%

0.00158

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

CWE-80

Связанные уязвимости

CVE-2025-0272

CVSS3: 5.4

nvd

10 месяцев назад

HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure.

EPSS

Процентиль: 37%

0.00158

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

CWE-80