How severe is CVE-2023-37526?

CVE-2023-37526 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2023-37526

6.5MEDIUM

HCL DRYiCE Lucy (now AEX) is affected by a Cross Origin Resource Sharing (CORS) vulnerability. The mobile app is vulnerable to a CORS misconfiguration which could potentially allow unauthorized access

Publicado: 5/14/2024Atualizado: 11/21/2024

Descrição

HCL DRYiCE Lucy (now AEX) is affected by a Cross Origin Resource Sharing (CORS) vulnerability. The mobile app is vulnerable to a CORS misconfiguration which could potentially allow unauthorized access to the application resources from any web domain and enable cache poisoning attacks.

Análise IADesenvolvido por IA

Referências

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0113032
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0113032