Hcl commerce
This hub aggregates every CVE we track for Hcl commerce, a product in the enterprise software space. Use it to gauge the current risk picture and drill into individual advisories.
8
CVEs tracked
2
Critical
3
High
0
In CISA KEV
Severity distribution
HIGH3MEDIUM2CRITICAL2LOW1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 8 most recently published vulnerabilities affecting Hcl commerce.
- CVE-2024-23576HCL Commerce is potentially affected by a denial of service and information disclosure vulnerability7.1
- CVE-2023-37532A path traversal vulnerability affects HCL Commerce5.8
- CVE-2022-38656HCL Commerce, when using Elasticsearch, could be affected by a denial of service vulnerability8.6
- CVE-2021-27785HCL Commerce could allow a local attacker to obtain sensitive personal information (CVE-2021-27785)3.9
- CVE-2021-27751HCL Commerce is affected by an Insufficient Session Expiration vulnerability.4.4
- CVE-2021-27741" Security vulnerability in HCL Commerce Management Center allowing XML external entity (XXE) injection"9.1
- CVE-2020-14274Information disclosure vulnerability in HCL Commerce 9.0.1.9 through 9.0.1.14 and 9.1 through 9.1.4 could allow a remote attacker to obtain user personal data via unknown vectors.7.5
- CVE-2020-14275Security vulnerability in HCL Commerce 9.0.0.5 through 9.0.0.13, 9.0.1.0 through 9.0.1.14 and 9.1 through 9.1.4 could allow denial of service, disclosure of user personal data, and performing of un...9.8
Product normalization is registry-driven with AI assist and human review. How it works