CVE-2023-45700

Summary

HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure.

Affected Software

VendorProductVersion RangeStatus
HCL SoftwareHCL Launch7.1 - 7.1.2.14, 7.2 - 7.2.3.7, 7.3 - 7.3.2.2affected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References