CVE-2023-45723

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 3, 2024

Updated: Jan 9, 2024

CWE ID 22

Summary

CVE-2023-45723 is a newly disclosed vulnerability affecting HCL DRYiCE MyXalytics. This issue involves a path traversal weakness that grants users the ability to upload files to unintended locations on the server. Specific endpoints in the system allow manipulation of the file path, potentially leading to unauthorized file access or modification. This vulnerability poses a significant risk to the security of affected installations.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

HCL Technologies Ltd.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s9dl5J
https://www.cve.org/CVERecord?id=CVE-2023-45723
https://nvd.nist.gov/vuln/detail/CVE-2023-45723

Back to Vulnerability Database

CVE-2023-45723

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations