Cleartext Transmission Vulnerability in HCL MyXalytics
CVE-2024-42181

1.6LOW

Key Information:

Vendor: HCL Software Software
Status: Dryice Myxalytics
Vendor: CVE Published:; 12 January 2025

Summary

HCL MyXalytics contains a vulnerability where sensitive information is transmitted in cleartext, allowing unauthorized individuals to intercept and exploit this data. This flaw poses a significant risk to the confidentiality and integrity of sensitive communications, emphasizing the need for secure transmission methods to safeguard user information from potential breaches.

Affected Version(s)

DRYiCE MyXalytics 6.3

References

https://support.hcl-software.com/csm?id=kb_article&syspar...

CVSS V3.1

Score:

1.6

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Physical

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 12, 2025
Vulnerability Reserved
Jul 29, 2024