HIGH🇵🇱 Wersja polska

CVE-2023-45724

CVSS 8.2v3.1pub. 2024-01-03upd. 2025-06-18

HCL DRYiCE MyXalytics product is impacted by unauthenticated file upload vulnerability. The web application permits the upload of a certain file without requiring user authentication.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
  • Hcltech Dryice Myxalytics

    APP
    Hcltech
    5.96.06.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-52653HIGH7.6ten sam produkt

HCL MyXalytics product is affected by Cross Site Scripting vulnerability in the web application. This can allo...

CVE-2025-52656HIGH7.6ten sam produkt

HCL MyXalytics: 6.6.  is affected by Mass Assignment vulnerability. Mass Assignment occurs when user input is ...

CVE-2024-42168HIGH8.9ten sam produkt

HCL MyXalytics is affected by out-of-band resource load (HTTP) vulnerability. An attacker can deploy a web se...

CVE-2024-42169HIGH7.1ten sam produkt

HCL MyXalytics is affected by insecure direct object references. It occurs due to missing access control chec...

CVE-2023-50341HIGH7.6ten sam produkt

HCL DRYiCE MyXalytics is impacted by Improper Access Control (Obsolete web pages) vulnerability. Discovery of ...