Primary

Context

HCL Glovius Cloud Outdated Hash Algorithm Vulnerability Allowing Brute-Force Attacks

Vulnerability

A vulnerability exists in HCL Glovius Cloud version v240520 due to the use of an outdated hash algorithm. This weakness could enable attackers to efficiently guess input data through brute-force or dictionary attacks, leveraging modern hardware such as GPUs or ASICs.

Impact

Exploitation of this vulnerability could lead to successful brute-force or dictionary attacks, allowing attackers to guess input data.

Remediation

HCL Glovius has updated the hashing mechanism to incorporate the latest recommended hash algorithms, which provide stronger cryptographic security, improved data integrity, and enhanced protection for stored and transmitted data. For further assistance, users can contact the HCL Glovius team.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

HCL Glovius Cloud Outdated Hash Algorithm Vulnerability Allowing Brute-Force Attacks

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating