Input validation

2023-04-0221:15:00

PRIOn knowledge base

www.prio-n.com

hcl compass

cors vulnerability

remote attackers

malicious requests

nvd

8.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

34.1%

JSON

HCL Compass is vulnerable to Cross-Origin Resource Sharing (CORS). This vulnerability can allow an unprivileged remote attacker to trick a legitimate user into accessing a special resource and executing a malicious request.

CPENameOperatorVersion
hcl_compassge2.0.0
hcl_compassle2.0.3
hcl_compassge2.1.0
hcl_compasslt2.2.1

Name	Operator	Version
hcl_compass	ge	2.0.0
hcl_compass	le	2.0.3
hcl_compass	ge	2.1.0
hcl_compass	lt	2.2.1

References

support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0103581