CVE-2026-21764
LOW
3.1
CVSS 3.1
Description
HCL DevOps Loop is affected by insufficient input validation that allows special characters where they should be restricted. This may result in unintended application behavior under certain conditions.
Metadata
Severity & Metrics
3.1
LOW CVSS 3.1
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
SSVC — CISA Coordinator
Affected products (1)
| Vendor | Product | Platform | Versions |
|---|---|---|---|
| HCLSoftware | DevOps Loop | — | 2.0.0 |
Weakness (CWE)
| CWE | Source | Description |
|---|---|---|
| CWE-754 | cna | CWE-754: Improper Check for Unusual or Exceptional Conditions |
CVSS scores (1)
| Score | Severity | Version | Source | Vector |
|---|---|---|---|---|
| 3.1 | LOW | 3.1 | cna | CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N |