HCL DevOps Deploy uses Cross-Origin Resource Sharing ...
Moderate severity
Unreviewed
Published
Jul 9, 2026
to the GitHub Advisory Database
•
Updated Jul 9, 2026
Description
Published by the National Vulnerability Database
Jul 9, 2026
Published to the GitHub Advisory Database
Jul 9, 2026
Last updated
Jul 9, 2026
HCL DevOps Deploy uses Cross-Origin Resource Sharing (CORS) which could allow an attacker to carry out privileged actions and retrieve sensitive information as the domain name is not being limited to only trusted domains.
References