CVE-2021-27751

Summary

HCL Commerce is affected by an Insufficient Session Expiration vulnerability. After the session expires, in some circumstances, parts of the application are still accessible.

Affected Software

VendorProductVersion RangeStatus
HCL SoftwareHCL Commerce8.0 - 8.0.4.27affected
HCL SoftwareHCL Commerce9.0 - 9.0.1.17affected
HCL SoftwareHCL Commerce9.1.0 - 9.1.8affected

Weaknesses

  • CWE-613: CWE-613 Insufficient Session Expiration

ADP Enrichment

CVE Program Container

Additional References

References