HCL DevOps Deploy and HCL Launch HTML Injection Vulnerability

Vulnerability

A vulnerability allowing HTML injection has been identified in HCL DevOps Deploy and HCL Launch. This issue could enable a user to insert arbitrary HTML tags into the Web UI, potentially leading to the disclosure of sensitive information.

Impact

Exploitation of this vulnerability could result in unauthorized HTML injection, with the possibility of disclosing sensitive information.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

1.9

impact

3.5

exploitability

5.0

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.9

impact

3.5

exploitability

5.0

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

HCL DevOps Deploy and HCL Launch HTML Injection Vulnerability

Vulnerability

Impact

Affected Products

HCL Launch

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating