HCL DevOps Deploy / HCL Launch stores potentially sensitive authentication token information in log files that could be read by a local user.
2025-03-27T05:15:38.237
2025-04-11T16:19:26.103
Analyzed
CVSSv3.1: 5.5 (MEDIUM)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | hcltechsw | hcl_devops_deploy | < 8.0.1.5 | Yes |
| Application | hcltechsw | hcl_devops_deploy | < 8.1.0.1 | Yes |
| Application | hcltechsw | hcl_launch | ≤ 7.0.5.26 | Yes |
| Application | hcltechsw | hcl_launch | < 7.1.2.22 | Yes |
| Application | hcltechsw | hcl_launch | < 7.2.3.15 | Yes |
| Application | hcltechsw | hcl_launch | ≤ 7.3.2.9 | Yes |