CVE-2026-56458
MEDIUM SEVERITYCVSS Score & Metrics
Base Score
5.4 / 10
Vector String
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Vulnerability Description
HCL DevOps Deploy uses Cross-Origin Resource Sharing (CORS) which could allow an attacker to carry out privileged actions and retrieve sensitive information as the domain name is not being limited to only trusted domains.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-942
Source
NVD
Vendor
HCLSoftware
Product
HCL DevOps Deploy
Discussion (0)
Add Comment
No comments yet. Be the first!