CVE-2023-28018

HCL Connections is vulnerable to a denial of service, caused by improper validation on certain requests. Using a specially-crafted request an attacker could exploit this vulnerability to cause denial of service for affected users.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:hcltech:connections:6.5:*:*:*:*:*:*:*
cpe:2.3:a:hcltech:connections:7.0:*:*:*:*:*:*:*
cpe:2.3:a:hcltech:connections:8.0:*:*:*:*:*:*:*

History

16 Oct 2024, 15:48

Type Values Removed Values Added
CWE NVD-CWE-noinfo
First Time Hcltech
Hcltech connections
References () https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0108430 - () https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0108430 - Vendor Advisory
CPE cpe:2.3:a:hcltech:connections:6.5:*:*:*:*:*:*:*
cpe:2.3:a:hcltech:connections:7.0:*:*:*:*:*:*:*
cpe:2.3:a:hcltech:connections:8.0:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : 5.5
v2 : unknown
v3 : 6.5

13 Feb 2024, 14:01

Type Values Removed Values Added
Summary
  • (es) HCL Connections es vulnerable a una denegación de servicio, provocada por una validación inadecuada de determinadas solicitudes. Mediante una solicitud especialmente manipulada, un atacante podría aprovechar esta vulnerabilidad para provocar una denegación de servicio a los usuarios afectados.

12 Feb 2024, 23:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-02-12 23:15

Updated : 2024-10-16 15:48


NVD link : CVE-2023-28018

Mitre link : CVE-2023-28018

CVE.ORG link : CVE-2023-28018


JSON object : View

Products Affected

hcltech

  • connections