CVE-2023-37502 Information

Description

HCL Compass is vulnerable to lack of file upload security.  An attacker could upload files containing active code that can be executed by the server or by a user’s web browser.

Reference

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0107510