Vulnerability in Hclsoftware Devops Loop
CVE-2026-21762
HCL DevOps Loop is affected by missing HTTP security headers. Missing security headers may reduce browser protections against common web-based attacks such as clickjacking, MIME-type sniffing, and cross-site scripting.
CVSS v3 metric
CVSS v3 base score 3.7 (Low). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N.
Affected products
- Hclsoftware Devops Loop — versions 2.0.0
Weakness classification (CWE)
References
- psirt@hcl.com (vendor-advisory)
Frequently asked questions
- What is CVE-2026-21762?
- CVE-2026-21762 is a low-severity vulnerability in Hclsoftware Devops Loop, classified under Improper Neutralization of HTTP Headers for Scripting Syntax. CVSS score: 3.7/10. Published 2026-07-17.
- How severe is CVE-2026-21762?
- Low severity. CVSS v3 base score is 3.7 out of 10.