CVE-2026-21788

Name of the Vulnerable Software and Affected Versions HCL Connections (affected versions not specified)

Description HCL Connections is susceptible to a cross-site scripting attack. An attacker can exploit this to execute arbitrary script code within a user's browser. Successful exploitation may allow the attacker to steal cookie-based authentication credentials and compromise user accounts, potentially leading to further attacks.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.