Filtered by vendor Hcltechsw Subscriptions
Filtered by product Onetest Performance Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2020-14245 1 Hcltechsw 1 Onetest Performance 2024-08-04 9.8 Critical
HCL OneTest UI V9.5, V10.0, and V10.1 does not perform authentication for functionality that either requires a provable user identity or consumes a significant amount of resources.
CVE-2020-14246 1 Hcltechsw 1 Onetest Performance 2024-08-04 7.5 High
HCL OneTest Performance V9.5, V10.0, V10.1 uses basic authentication which is relatively weak. An attacker could potentially decode the encoded credentials.
CVE-2020-14247 1 Hcltechsw 1 Onetest Performance 2024-08-04 6.5 Medium
HCL OneTest Performance V9.5, V10.0, V10.1 contains an inadequate session timeout, which could allow an attacker time to guess and use a valid session ID.