CVE-2020-4101: SSRF
First published: Thu Jun 11 2020(Updated: )
"HCL Digital Experience is susceptible to Server Side Request Forgery."
Credit: psirt@hcl.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Hcltech Hcl Digital Experience | =8.5 | |
| Hcltech Hcl Digital Experience | =9.0 | |
| Hcltech Hcl Digital Experience | =9.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2020-4101.
What is the severity of CVE-2020-4101?
The severity of CVE-2020-4101 is critical with a score of 9.8.
Which versions of HCL Digital Experience are affected by CVE-2020-4101?
Versions 8.5, 9.0, and 9.5 of HCL Digital Experience are affected by CVE-2020-4101.
What is Server Side Request Forgery (SSRF)?
Server Side Request Forgery (SSRF) is a vulnerability that allows an attacker to make requests to internal resources behind a firewall or on the local network.
How can I fix the CVE-2020-4101 vulnerability in HCL Digital Experience?
To fix the CVE-2020-4101 vulnerability in HCL Digital Experience, apply the relevant security patches provided by HCL Technologies.
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/description
- agent/type
- agent/event
- agent/last-modified-date
- agent/first-publish-date
- agent/tags
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- vendor/hcltech
- canonical/hcltech hcl digital experience
- version/hcltech hcl digital experience/8.5
- version/hcltech hcl digital experience/9.0
- version/hcltech hcl digital experience/9.5