CVE-2023-50346

Summary

CVE-2023-50346 is a newly identified information disclosure vulnerability affecting HCL DRYiCE MyXalytics. The issue lies in certain endpoints within the application, which inadvertently reveal detailed file information. An attacker could potentially exploit this vulnerability to gain unauthorized access to sensitive data, increasing the risk of data breaches or unauthorized system access. Organizations using HCL DRYiCE MyXalytics are urged to apply the necessary patches or updates to mitigate this risk. The disclosure of file information could lead to privacy breaches and potential misuse of data, emphasizing the importance of timely mitigation efforts.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.