Search
Search Results (5 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-59873 | 1 Hcl Software | 1 Zie For Web | 2026-02-23 | 5.9 Medium |
| An information exposure vulnerability exists in Vulnerability in HCL Software ZIE for Web. The application transmits sensitive session tokens and authentication identifiers within the URL query parameters . An attacker who gains access to any network log or operates a site linked from the application can hijack user sessions This issue affects ZIE for Web: v16. | ||||
| CVE-2024-23580 | 1 Hcl Software | 1 Dryice Optibot Reset Station | 2025-07-12 | 6.5 Medium |
| HCL DRYiCE Optibot Reset Station is impacted by insecure encryption of One-Time Passwords (OTPs). This could allow an attacker with access to the database to recover some or all encrypted values. | ||||
| CVE-2024-23579 | 1 Hcl Software | 1 Dryice Optibot Reset Station | 2025-07-12 | 6.5 Medium |
| HCL DRYiCE Optibot Reset Station is impacted by insecure encryption of security questions. This could allow an attacker with access to the database to recover some or all encrypted values. | ||||
| CVE-2024-30120 | 1 Hcl Software | 1 Dryice Optibot Reset Station | 2024-11-21 | 2.9 Low |
| HCL DRYiCE Optibot Reset Station is impacted by an Unused Parameter in the web application. | ||||
| CVE-2024-30119 | 1 Hcl Software | 1 Dryice Optibot Reset Station | 2024-11-21 | 3.7 Low |
| HCL DRYiCE Optibot Reset Station is impacted by a missing Strict Transport Security Header. This could allow an attacker to intercept or manipulate data during redirection. | ||||
Page 1 of 1.