CVE-2024-42175

Name of the Vulnerable Software and Affected Versions HCL MyXalytics version 6.3

Description The issue is related to weak input validation in the application, which accepts special characters and lacks length validation. This weakness can potentially lead to security issues such as SQL injection, XSS, and buffer overflow.

Recommendations For HCL MyXalytics version 6.3, consider implementing proper input validation to restrict special characters and enforce length limits to mitigate the risk of exploitation. As a temporary workaround, restrict access to sensitive areas of the application that may be vulnerable to SQL injection, XSS, or buffer overflow attacks until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.