CVE-2023-45723

Description

HCL DRYiCE MyXalytics is impacted by path traversal vulnerability which allows file upload capability. Certain endpoints permit users to manipulate the path (including the file name) where these files are stored on the server.

CVSS Version 3.1

nvd
CVE ID: CVE-2023-45723
Base Score: 9.8
Base Severity: CRITICAL
Vector String:CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 3.9

hcl
CVE ID: CVE-2023-45723
Base Score: 7.6
Base Severity: HIGH
Vector String:CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
Impact Score: 4.7
Exploitability Score: 2.8

Refrence: NVD MITRE

Description​

Description