Vulnerability Description
"HCL AppScan Enterprise advisory API documentation is susceptible to clickjacking, which could allow an attacker to embed the contents of untrusted web pages in a frame."
CVSS Score
4.3
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hcltech | Appscan | <= 10.0.0 |
Related Weaknesses (CWE)
References
- https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0080572Vendor Advisory
- https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0080572&sys_kbVendor Advisory
- https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0080572Vendor Advisory
- https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0080572&sys_kbVendor Advisory
FAQ
What is CVE-2019-4323?
CVE-2019-4323 is a vulnerability with a CVSS score of 4.3 (MEDIUM). "HCL AppScan Enterprise advisory API documentation is susceptible to clickjacking, which could allow an attacker to embed the contents of untrusted web pages in a frame."
How severe is CVE-2019-4323?
CVE-2019-4323 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-4323?
Check the references section above for vendor advisories and patch information. Affected products include: Hcltech Appscan.