What is the HCL CNA?
HCL is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 410 CVE records since 2019.
How many CVEs has HCL published?
HCL has published 410 CVE records, including 205 in the last two years.
What is HCL's CVE data quality grade?
RadicalNotion.AI grades HCL's CVE data quality as B, with an overall completeness score of 85.9%. This reflects how consistently its CVE records include vendor (87.3%), product (100%), CVSS (84.1%), and CWE (72%) information.
What products does HCL publish CVEs for?
HCL most frequently publishes CVEs for AION, BigFix Platform, DRYiCE MyXalytics, HCL Launch, Connections.
Which vendors does HCL cover?
HCL publishes CVEs across 5 distinct vendors, most often hcltech, HCL Software, HCL, hcltechsw, HCLSoftware.
Is HCL actively publishing CVEs?
HCL is currently active, based on 205 CVEs in the last two years.
What is the average severity of HCL's CVEs?
The average CVSS base score across HCL's scored CVEs is 5.3.
How many critical CVEs has HCL published?
HCL has published 11 critical-severity CVEs and 62 high-severity CVEs.
Are any of HCL's CVEs in CISA's Known Exploited Vulnerabilities catalog?
No. None of HCL's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
What are the most common weakness types in HCL's CVEs?
HCL's CVEs most often map to these CWE weakness types: CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-200 (Exposure of Sensitive Information to an Unauthorized Actor), CWE-522 (Insufficiently Protected Credentials), CWE-209 (Generation of Error Message Containing Sensitive Information).
How does HCL rank among CNAs?
By total CVE volume, HCL ranks #61 of 370 CNAs, and it reports more complete CVE records than 33% of all CNAs.
