Описание
Inclusion of Functionality from Untrusted Control Sphere vulnerability in HCL MyXalytics. v6.6 allows Loading third-party scripts without integrity checks or validation can allow external code run in the application's context, risking data exposure.
EPSS
Процентиль: 12%
0.00039
Низкий
3.1 Low
CVSS3
Дефекты
CWE-829
Связанные уязвимости
CVSS3: 3.1
github
4 месяца назад
Inclusion of Functionality from Untrusted Control Sphere vulnerability in HCL MyXalytics. v6.6 allows Loading third-party scripts without integrity checks or validation can allow external code run in the application's context, risking data exposure.
EPSS
Процентиль: 12%
0.00039
Низкий
3.1 Low
CVSS3
Дефекты
CWE-829