CVE-2023-50344

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Jan 3, 2024

Updated: Jan 9, 2024

Summary

CVE-2023-50344 is a newly identified vulnerability affecting HCL DRYiCE MyXalytics. This issue stems from insufficient access controls, allowing unauthenticated users to gain unauthorized access and download certain files. This vulnerability poses a significant risk, as it bypasses authentication requirements and can potentially lead to sensitive information disclosure. Organizations utilizing HCL DRYiCE MyXalytics are strongly advised to apply the necessary patches or updates as soon as possible to mitigate this exposure.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

HCL Technologies Ltd.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tt8jO-
https://www.cve.org/CVERecord?id=CVE-2023-50344
https://nvd.nist.gov/vuln/detail/CVE-2023-50344

Back to Vulnerability Database

CVE-2023-50344

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations