CVE-2023-50343

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jan 3, 2024

Updated: Jan 9, 2024

Summary

CVE-2023-50343 is a vulnerability affecting HCL DRYiCE MyXalytics. This issue involves improper access control with controller APIs, granting Customer Admin Users unauthorized access to sensitive information belonging to other users. By exploiting this vulnerability, an attacker could potentially gain insight into confidential data, posing a significant security risk. It is crucial for organizations using HCL DRYiCE MyXalytics to apply relevant patches or mitigations to protect their data from unintended exposure.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

HCL Technologies Ltd.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tt8jO4
https://www.cve.org/CVERecord?id=CVE-2023-50343
https://nvd.nist.gov/vuln/detail/CVE-2023-50343

Back to Vulnerability Database

CVE-2023-50343

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations