HCL MyXalytics is affected by broken authentication. It allows attackers to compromise keys, passwords, and session tokens, potentially leading to identity theft and system control. This vulnerability arises from poor configuration, logic errors, or software bugs and can affect any application with access control, including databases, network infrastructure, and web applications.
History

Sat, 11 Jan 2025 07:00:00 +0000

Type Values Removed Values Added
Description HCL MyXalytics is affected by broken authentication. It allows attackers to compromise keys, passwords, and session tokens, potentially leading to identity theft and system control. This vulnerability arises from poor configuration, logic errors, or software bugs and can affect any application with access control, including databases, network infrastructure, and web applications.
Title HCL MyXalytics is affected by broken authentication
Weaknesses CWE-287
References
Metrics cvssV3_1

{'score': 5.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: HCL

Published: 2025-01-11T06:44:28.808Z

Updated: 2025-01-11T06:44:28.808Z

Reserved: 2024-07-29T21:32:01.610Z

Link: CVE-2024-42172

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2025-01-11T07:15:08.743

Modified: 2025-01-11T07:15:08.743

Link: CVE-2024-42172

cve-icon Redhat

No data.