CVE-2025-52658

all versions

HCL MyXalytics is affected by the use of vulnerable/outdated versions which can expose the application to known security risks tha

3.5LOW

CVE-2025-52656

all versions

HCL MyXalytics: 6.6. is affected by Mass Assignment vulnerability. Mass Assignment occurs when user input is automatically boun

7.6HIGH

CVE-2025-52654

all versions

HCL MyXalytics v6.6 is affected by an HTML Injection. This issue occurs when untrusted input is included in the output without pro

4.6MEDIUM

CVE-2025-52653

all versions

HCL MyXalytics product is affected by Cross Site Scripting vulnerability in the web application. This can allow the execution of u

7.6HIGH

CVE-2024-42178

all versions

HCL MyXalytics is affected by a failure to restrict URL access vulnerability. Unauthenticated users might gain unauthorized access

2.5LOW

CVE-2024-42177

all versions

HCL MyXalytics is affected by SSL∕TLS Protocol affected with BREACH & LUCKY13 vulnerabilities. Attackers can exploit the weaknes

2.6LOW

CVE-2024-42176

all versions

HCL MyXalytics is affected by concurrent login vulnerability. A concurrent login vulnerability occurs when simultaneous active ses

2.6LOW

CVE-2024-42181

all versions

HCL MyXalytics is affected by a cleartext transmission of sensitive information vulnerability. The application transmits sensitiv

1.6LOW

CVE-2024-42180

all versions

HCL MyXalytics is affected by a malicious file upload vulnerability. The application accepts invalid file uploads, including inco

1.6LOW

CVE-2024-42179

all versions

HCL MyXalytics is affected by sensitive information disclosure vulnerability. The HTTP response header exposes the Microsoft-HTTP

2.0LOW

CVE-2024-42175

all versions

HCL MyXalytics is affected by a weak input validation vulnerability. The application accepts special characters and there is no l

2.6LOW

CVE-2024-42174

all versions

HCL MyXalytics is affected by username enumeration vulnerability. This allows a malicious user to perform enumeration of applicat

3.7LOW

CVE-2024-42173

all versions

HCL MyXalytics is affected by an improper password policy implementation vulnerability. Weak passwords and lack of account lockou

4.8MEDIUM

CVE-2024-42172

all versions

HCL MyXalytics is affected by broken authentication. It allows attackers to compromise keys, passwords, and session tokens, poten

5.3MEDIUM

CVE-2024-42171

all versions

HCL MyXalytics is affected by a session fixation vulnerability. Cyber-criminals can exploit this by sending crafted URLs with a s

6.4MEDIUM

CVE-2024-42170

all versions

HCL MyXalytics is affected by a session fixation vulnerability. Cyber-criminals can exploit this by sending crafted URLs with a s

6.8MEDIUM

CVE-2024-42169

all versions

HCL MyXalytics is affected by insecure direct object references. It occurs due to missing access control checks, which fail to ve

7.1HIGH

CVE-2024-42168

all versions

HCL MyXalytics is affected by out-of-band resource load (HTTP) vulnerability. An attacker can deploy a web server that returns ma

8.9HIGH

CVE-2023-50347

all versions

HCL DRYiCE MyXalytics is impacted by an insecure SQL interface vulnerability, potentially giving an attacker the ability to execut

3.7LOW

CVE-2023-50344

all versions

HCL DRYiCE MyXalytics is impacted by improper access control (Unauthenticated File Download) vulnerability. An unauthenticated use

5.4MEDIUM

CVE-2023-50343

all versions

HCL DRYiCE MyXalytics is impacted by an Improper Access Control (Controller APIs) vulnerability. Certain API endpoints are accessi

8.3HIGH

CVE-2023-50342

all versions

HCL DRYiCE MyXalytics is impacted by an Insecure Direct Object Reference (IDOR) vulnerability. A user can obtain certain details

7.1HIGH

CVE-2023-50341

all versions

HCL DRYiCE MyXalytics is impacted by Improper Access Control (Obsolete web pages) vulnerability. Discovery of outdated and accessi

7.6HIGH

CVE-2023-45724

all versions

HCL DRYiCE MyXalytics product is impacted by unauthenticated file upload vulnerability. The web application permits the upload of

8.2HIGH

CVE-2023-45723

all versions

HCL DRYiCE MyXalytics is impacted by path traversal vulnerability which allows file upload capability. Certain endpoints permit

7.6HIGH

CVE-2023-45722

all versions

HCL DRYiCE MyXalytics is impacted by path traversal arbitrary file read vulnerability because it uses external input to construct

8.8HIGH

CVE-2023-50351

all versions

HCL DRYiCE MyXalytics is impacted by the use of an insecure key rotation mechanism which can allow an attacker to compromise the c

8.2HIGH

CVE-2023-50350

all versions

HCL DRYiCE MyXalytics is impacted by the use of a broken cryptographic algorithm for encryption, potentially giving an attacker ab

8.2HIGH

CVE-2023-50348

all versions

HCL DRYiCE MyXalytics is impacted by an improper error handling vulnerability. The application returns detailed error messages tha

3.1LOW

CVE-2023-50346

all versions

HCL DRYiCE MyXalytics is impacted by an information disclosure vulnerability. Certain endpoints within the application disclose de

3.1LOW

CVE-2023-50345

all versions

HCL DRYiCE MyXalytics is impacted by an Open Redirect vulnerability which could allow an attacker to redirect users to malicious s

3.7LOW