Server Software Disclosure Vulnerability in HCL Aftermarket EPC
CVE-2024-23568

5.3MEDIUM

Key Information:

Vendor
CVE Published:
17 July 2026

What is CVE-2024-23568?

The HCL Aftermarket EPC application is susceptible to a vulnerability whereby the server software version is publicly exposed by the web server. This disclosure can aid potential attackers in identifying specific vulnerabilities associated with that software version. If the application is running an outdated version with known security weaknesses, it becomes an easier target for exploitation. It is essential for organizations to regularly monitor and protect their web server configurations to safeguard against such vulnerabilities.

Affected Version(s)

Aftermarket EPC version 1.0.0

References

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.