CVE-2023-50348

Improper Error Handling affects DRYiCE MyXalytics

CVSS 3.1 LOWEPSS 0.3%CWE-209

Vexday Risk Score

8Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 3.1EPSS 0.3%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

03 Jan 2024Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

HCL DRYiCE MyXalytics is impacted by an improper error handling vulnerability. The application returns detailed error messages that can provide an attacker with insight into the application, system, etc.

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N

Affected products

HCL Software · DRYiCE MyXalytics

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0109608