Search Results | AttackerKB

3 Total Results

Displaying 1-3 of 3

Attacker Value

Unknown

CVE-2020-14245

Disclosure Date: February 04, 2021 (last updated February 22, 2025)

HCL OneTest UI V9.5, V10.0, and V10.1 does not perform authentication for functionality that either requires a provable user identity or consumes a significant amount of resources.

Attacker Value

Unknown

CVE-2020-14247

Disclosure Date: February 04, 2021 (last updated February 22, 2025)

HCL OneTest Performance V9.5, V10.0, V10.1 contains an inadequate session timeout, which could allow an attacker time to guess and use a valid session ID.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2020-14246

Disclosure Date: February 04, 2021 (last updated February 22, 2025)

HCL OneTest Performance V9.5, V10.0, V10.1 uses basic authentication which is relatively weak. An attacker could potentially decode the encoded credentials.

Attack Vector: Network Privileges: None User Interaction: None

3 Total Results

Displaying 1-3 of 3

Unknown

CVE-2020-14245

Unknown

CVE-2020-14247

Unknown

CVE-2020-14246

Quick Cookie Notification