Vulnerability in Hclsoftware Devops Loop
CVE-2026-21760
HCL DevOps Loop is affected by an Unauthorized Access to Admin Functionality (Forced Browsing) vulnerability. Improper authorization checks may allow unauthorized users to access restricted administrative functionality by directly accessin…
CVSS v3 metric
CVSS v3 base score 4.6 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N.
Affected products
- Hclsoftware Devops Loop — versions 2.0.0
Weakness classification (CWE)
References
- psirt@hcl.com (vendor-advisory)
Frequently asked questions
- What is CVE-2026-21760?
- CVE-2026-21760 is a medium-severity vulnerability in Hclsoftware Devops Loop, classified under Direct Request (Forced Browsing). CVSS score: 4.6/10. Published 2026-07-17.
- How severe is CVE-2026-21760?
- Medium severity. CVSS v3 base score is 4.6 out of 10.