HCL Unica Platform Content Security Policy Misconfiguration Vulnerability
Vulnerability
A vulnerability exists in HCL Unica Platform due to a misconfigured Content Security Policy (CSP). This misconfiguration can allow malicious resources to be loaded, potentially leading to cross-site scripting or clickjacking attacks.
Impact
Exploitation of this vulnerability could result in cross-site scripting or clickjacking attacks.
Remediation
To address this vulnerability, it is recommended to configure the Content Security Policy to restrict the sources from which content can be loaded. This can be done by adding the appropriate CSP directives in the web server configuration.
Added: Oct 12, 2025, 8:17 AM
Updated: Oct 12, 2025, 8:17 AM
Vulnerability Rating
Custom Algorithm
spread
0.0impact
1.7exploitability
4.5remediation
0.0relevance
0.7threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.