HCL MyCloud Improper Access Control Vulnerability Allowing Unauthenticated Privilege Escalation

Vulnerability

A vulnerability in HCL MyCloud has been identified, characterized by improper access control that allows unauthenticated users to escalate privileges. This vulnerability could lead to unauthorized information disclosure and create opportunities for server-side request forgery (SSRF) and denial-of-service (DoS) attacks.

Impact

Exploitation of this vulnerability could result in unauthorized privilege escalation, allowing attackers to gain elevated rights within the application. This could be followed by information disclosure and the potential to conduct server-side request forgery (SSRF) attacks or cause a denial-of-service (DoS) condition.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

HCL MyCloud Improper Access Control Vulnerability Allowing Unauthenticated Privilege Escalation

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating