CVE-2024-42196

CVSS 3.1 Score 6.2 of 10 (medium)

Details

Published Dec 6, 2024
CWE ID 532

Summary

CVE-2024-42196 is a vulnerability affecting HCL Launch. It allows a local user with access to HTTP request logs to read potentially sensitive information that is stored in log files. This issue could lead to the exposure of confidential data, posing a significant risk to the security of an organization's systems. HCL Launch is advised to implement access control measures to limit access to log files and mitigate this vulnerability. Users should also regularly review and secure their log files to protect against potential data breaches. This vulnerability underscores the importance of securing log files and limiting access to sensitive information to authorized personnel.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share