CVE-2020-14231: Input Validation
First published: Tue Dec 22 2020(Updated: )
A vulnerability in the input parameter handling of HCL Client Application Access v9 could potentially be exploited by an authenticated attacker resulting in a stack buffer overflow. This could allow the attacker to crash the program or inject code into the system which would execute with the privileges of the currently logged in user.
Credit: psirt@hcl.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Hcltechsw Hcl Client Application Access | =9.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2020-14231?
CVE-2020-14231 is a vulnerability in the input parameter handling of HCL Client Application Access v9.
How can an attacker exploit CVE-2020-14231?
An authenticated attacker can exploit CVE-2020-14231 to cause a stack buffer overflow.
What are the potential impacts of CVE-2020-14231?
The potential impacts of CVE-2020-14231 include crashing the program or injecting code into the system to execute with elevated privileges.
What is the severity of CVE-2020-14231?
CVE-2020-14231 has a severity rating of 8.8 (high).
How can I fix CVE-2020-14231?
To fix CVE-2020-14231, it is recommended to apply the latest security patches or updates provided by HCL Client Application Access.
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/tags
- agent/event
- agent/type
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/hcltechsw
- canonical/hcltechsw hcl client application access
- version/hcltechsw hcl client application access/9.0