CVE-2023-45723

critical

Description

HCL DRYiCE MyXalytics is impacted by path traversal vulnerability which allows file upload capability. Certain endpoints permit users to manipulate the path (including the file name) where these files are stored on the server.

References

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0109608

Details

Source: Mitre, NVD

Published: 2024-01-03

Updated: 2025-06-18

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H