Products
HCL Nomad server on Domino
Source
psirt@hcl.com
Tags
CVE-2024-30130 details
Published : July 19, 2024, 2:15 a.m.
Last Modified : July 19, 2024, 1:01 p.m.
Last Modified : July 19, 2024, 1:01 p.m.
Description
HCL Nomad server on Domino is vulnerable to the cache containing sensitive information which could potentially give an attacker the ability to acquire the sensitive information.
CVSS Score
1 | 2 | 3.7 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|---|---|
CWE-525 | Use of Web Browser Cache Containing Sensitive Information | The web application does not use an appropriate caching policy that specifies the extent to which each web page and associated form fields should be cached. |
CVSS Data
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
Base Score
3.7
Exploitability Score
2.2
Impact Score
1.4
Base Severity
LOW
Vector String : CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
References
URL | Source |
---|---|
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0114184 | psirt@hcl.com |
This website uses the NVD API, but is not approved or certified by it.