HCL Technologies Workload Automation 9.4.0 Fix Pack 5
Approved changes feed: RSS · Atom
cpe:2.3:a:hcltech:workload_automation:9.4.0:fix_pack_5:*:*:*:*:*:*
part: a version: 9.4.0 update: fix_pack_5
| Vendor | Hcltech (be2dce80-cb79-5854-9fe6-9b4a1139ec3e) |
|---|---|
| Product | Workload Automation (97589645-837a-5593-abf2-8c31fc53dd2c) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-28009 |
vulnerable | 2026-06-03 14:51:03.295194 |
HCL Workload Automation is vulnerable to XML External Entity (XXE) Injection
MEDIUM (6.5)
HCL Workload Automation is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources.
Published: 2023-04-26T19:38:54.631Z
Updated: 2025-01-30T21:29:13.323Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28008 |
vulnerable | 2026-06-03 14:51:03.288436 |
HCL Workload Automation is vulnerable to XML External Entity (XXE) Injection
HIGH (7.1)
HCL Workload Automation 9.4, 9.5, and 10.1 are vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources.
Published: 2023-04-26T19:24:37.974Z
Updated: 2025-01-30T21:29:33.785Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.