| Vendor | Product | Version Range | Status |
|---|---|---|---|
| HCL Software | DFXServer | version 2.5 and below | affected |
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| HCL Software | DFXServer | version 2.5 and below | - |
| # | POC Description | Source Link | Shenlong Link |
|---|
No public POC found.
Login to generate AI POC| CVE-2026-35147 | 8.2 HIGH | HCL DFXServer is affected by a Broken Authentication vulnerability via direct API access. |
| CVE-2026-35149 | 8.2 HIGH | HCL DFXServer is affected by an Authentication Bypass vulnerability via server response ma |
| CVE-2026-56454 | 5.9 MEDIUM | HCL DFXAnalytics is affected by a Deprecated Protocol vulnerability due to the use of TLS |
| CVE-2026-56453 | 5.5 MEDIUM | HCL DFXAnalytics is affected by an Account Takeover via Response Manipulation vulnerabilit |
| CVE-2026-56456 | 5.3 MEDIUM | HCL DFXAnalytics is affected by an Internal File Path Disclosure vulnerability. |
| CVE-2026-56455 | 5.3 MEDIUM | HCL DFXAnalytics is affected by a Buffer Overflow vulnerability that can lead to a Denial |
| CVE-2026-35145 | 3.1 LOW | HCL DFXAnalytics is affected by a Missing HTTP Strict-Transport-Security Header vulnerabil |
| CVE-2026-35143 | 3.0 LOW | HCL DFXAnalytics is affected by a Missing SameSite Attribute vulnerability. |
| CVE-2026-35140 | 3.0 LOW | HCL DFXAnalytics is affected by a Missing Secure Attribute in Encrypted Session (SSL) Cook |
| CVE-2026-35142 | 2.6 LOW | HCL DFXAnalytics is affected by an Internal IP Address Disclosure vulnerability. |
| CVE-2026-35141 | 2.6 LOW | HCL DFXAnalytics is affected by a Login Replay Attack vulnerability |
No comments yet