CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-27563 – Overload/denial of service affects HCL VersionVault Express
https://notcve.org/view.php?id=CVE-2022-27563
An unauthenticated user can overload a part of HCL VersionVault Express and cause a denial of service. Un usuario no autenticado puede sobrecargar una parte de HCL VersionVault Express y causar una denegación de servicio • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0100274 • CWE-754: Improper Check for Unusual or Exceptional Conditions •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-27560 – An insufficiently protected credential vulnerability affects HCL VersionVault Express
https://notcve.org/view.php?id=CVE-2022-27560
HCL VersionVault Express exposes administrator credentials. HCL VersionVault Express expone las credenciales del administrador • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0100150 • CWE-522: Insufficiently Protected Credentials •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-2021-27779 – A Security Misconfiguration vulnerability affects HCL VersionVault Express
https://notcve.org/view.php?id=CVE-2021-27779
VersionVault Express exposes sensitive information that an attacker can use to impersonate the server or eavesdrop on communications with the server. VersionVault Express expone información confidencial que un atacante puede usar para hacerse pasar por el servidor o espiar las comunicaciones con el servidor • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0098165 • CWE-311: Missing Encryption of Sensitive Data •