CVE-2023-45720 MEDIUM

CVE-2023-45720: HCL Leap is affected by a disclosure of private personal information vulnerability

Vendor Hcl Software
Product HCL Leap
Weakness CWE-359
Published April 24, 2025
Last update April 24, 2025

CVSS base score

5.3/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

Insufficient default configuration in HCL Leap allows anonymous access to directory information.

Key dates

02Disclosure timeline

April 24, 2025 CVE published
April 24, 2025 Record updated