Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-23560

HCL DevOps Deploy / HCL Launch could be vulnerable to incomplete revocation of permissions when deleting a custom security resource type.

Published

2024-04-15T20:15:10.873

Last Modified

2025-04-11T18:25:49.067

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 4.4 (MEDIUM)

Weaknesses
  • Type: Secondary
    CWE-281
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application hcltechsw hcl_devops_deploy < 8.0.1 Yes
Application hcltechsw hcl_launch < 7.0.5.21 Yes
Application hcltechsw hcl_launch < 7.1.2.17 Yes
Application hcltechsw hcl_launch < 7.2.3.10 Yes
Application hcltechsw hcl_launch < 7.3.2.5 Yes
References