CVE-2023-45724

Description

HCL DRYiCE MyXalytics product is impacted by unauthenticated file upload vulnerability. The web application permits the upload of a certain file without requiring user authentication.

CVSS Version 3.1

nvd
CVE ID: CVE-2023-45724
Base Score: 9.8
Base Severity: CRITICAL
Vector String:CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 3.9

hcl
CVE ID: CVE-2023-45724
Base Score: 8.2
Base Severity: HIGH
Vector String:CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Impact Score: 4.2
Exploitability Score: 3.9

Refrence: NVD MITRE

Description​

Description