CVE-2023-28022

Summary

HCL Connections is vulnerable to an information disclosure vulnerability which could allow a user to obtain sensitive information they are not entitled to, caused by improper handling of request data.

Affected Software

VendorProductVersion RangeStatus
HCL SoftwareHCL Connections6.0, 6.5, 7.0, 8.0affected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References