HCL MyXalytics SSL/TLS Vulnerability Allowing Interception and Decryption of Data

Vulnerability

A vulnerability in HCL MyXalytics related to the SSL/TLS protocol exposes the application to BREACH and LUCKY13 attacks. This weakness allows attackers to exploit certain ciphers, potentially leading to interception and decryption of encrypted data, theft of sensitive information, or injection of malicious code into the system.

Impact

Exploitation of this vulnerability could result in interception and decryption of sensitive data, unauthorized access to confidential information, or execution of malicious code within the system.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

HCL MyXalytics SSL/TLS Vulnerability Allowing Interception and Decryption of Data

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating