Security Advisory

CVE-2023-37526

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-05-10 17:16:12

Last updated 2024-08-02 17:16:30

Assigner HCL

State PUBLISHED

Description

HCL DRYiCE Lucy (now AEX) is affected by a Cross Origin Resource Sharing (CORS) vulnerability. The mobile app is vulnerable to a CORS misconfiguration which could potentially allow unauthorized access to the application resources from any web domain and enable cache poisoning attacks.

← Browse all CVEs View on cve.org ↗