CVE-2024-23589: HCL Glovius Cloud is susceptible to an Outdated Hash Algorithm vulnerability

6.8 CVSS

Description

Due to outdated Hash algorithm, HCL Glovius Cloud could allow attackers to guess the input data using brute-force or dictionary attacks efficiently using modern hardware such as GPUs or ASICs

Classification

CVE ID: CVE-2024-23589

CVSS Base Severity: MEDIUM

CVSS Base Score: 6.8

CVSS Vector: CVSS:3.1/AV:A/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Problem Types

CWE-328 Use of Weak Hash

Affected Products

Vendor: HCL Software

Product: HCL Glovius Cloud

Stakeholder-Specific Vulnerability Categorization (SSVC)

SSVC Exploitation: none

SSVC Technical Impact: total

SSVC Automatable: false

References

https://nvd.nist.gov/vuln/detail/CVE-2024-23589
https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0121015

Timeline

2025-05-30 16:40:11 UTC
CVE

HCL Glovius Cloud is susceptible to an Outdated Hash Algorithm vulnerability