CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-44758 – HCL BigFix Insights for Vulnerability Remediation (IVR) is vulnerable to improper credential handling
https://notcve.org/view.php?id=CVE-2022-44758
BigFix Insights/IVR fixlet uses improper credential handling within certain fixlet content. An attacker can gain access to information that is not explicitly authorized. El fixlet de BigFix Insights/IVR utiliza un manejo de credenciales inadecuado dentro de determinado contenido del fixlet. Un atacante puede obtener acceso a información que no está explícitamente autorizada. • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0108005 • CWE-522: Insufficiently Protected Credentials •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2023-28010 – HCL Domino is susceptible to a sensitive information disclosure vulnerability
https://notcve.org/view.php?id=CVE-2023-28010
In some configuration scenarios, the Domino server host name can be exposed. This information could be used to target future attacks. En algunos escenarios de configuración, el nombre de host del servidor de Domino puede estar expuesto. Esta información podría usarse para dirigir futuros ataques. • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0107388 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-37512 – HCL Traveler Companion is vulnerable to revealing sensitive information via the task switcher
https://notcve.org/view.php?id=CVE-2023-37512
When the app is put to the background and the user goes to the task switcher of iOS, the app snapshot is not blurred which may reveal sensitive information. • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0106691 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-37513 – HCL Traveler To Do is vulnerable to revealing sensitive information via the task switcher
https://notcve.org/view.php?id=CVE-2023-37513
When the app is put to the background and the user goes to the task switcher of iOS, the app snapshot is not blurred which may reveal sensitive information. • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0106692 •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-37511 – HCL Traveler To Do is affected by App Transport Security (ATS) settings allowing insecure loads in web content
https://notcve.org/view.php?id=CVE-2023-37511
If certain App Transport Security (ATS) settings are set in a certain manner, insecure loading of web content can be achieved. • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0106690 •