Описание
HCL DRYiCE Lucy (now AEX) is affected by a Cross Origin Resource Sharing (CORS) vulnerability. The mobile app is vulnerable to a CORS misconfiguration which could potentially allow unauthorized access to the application resources from any web domain and enable cache poisoning attacks.
EPSS
Процентиль: 40%
0.0018
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-942
Связанные уязвимости
CVSS3: 6.5
github
больше 1 года назад
HCL DRYiCE Lucy (now AEX) is affected by a Cross Origin Resource Sharing (CORS) vulnerability. The mobile app is vulnerable to a CORS misconfiguration which could potentially allow unauthorized access to the application resources from any web domain and enable cache poisoning attacks.
EPSS
Процентиль: 40%
0.0018
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-942