{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2024-42210", "assignerOrgId": "1e47fe04-f25f-42fa-b674-36de2c5e3cfc", "state": "PUBLISHED", "assignerShortName": "HCL", "dateReserved": "2024-07-29T21:32:16.370Z", "datePublished": "2026-03-19T07:32:40.924Z", "dateUpdated": "2026-03-23T13:50:36.585Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "1e47fe04-f25f-42fa-b674-36de2c5e3cfc", "shortName": "HCL", "dateUpdated": "2026-03-19T07:32:40.924Z"}, "title": "HCL Unica Marketing Operations v12.1.8 and lower is affected by a Stored cross-site scripting (XSS) vulnerability", "datePublic": "2026-03-19T07:32:00.000Z", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-79", "description": "CWE-79 Improper neutralization of input during web page generation ('cross-site scripting')", "type": "CWE"}]}], "affected": [{"vendor": "HCLSoftware", "product": "Unica Marketing Operations (Plan)", "versions": [{"status": "affected", "version": "<= 12.1.8"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "A Stored cross-site scripting (XSS) vulnerability affects HCL Unica Marketing Operations v12.1.8 and lower. \u00a0Stored cross-site scripting (also known as second-order or persistent XSS) arises when an application receives data from an untrusted source and includes that data within its later HTTP responses in an unsafe way.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "A Stored cross-site scripting (XSS) vulnerability affects HCL Unica Marketing Operations v12.1.8 and lower. &nbsp;Stored cross-site scripting (also known as second-order or persistent XSS) arises when an application receives data from an untrusted source and includes that data within its later HTTP responses in an unsafe way."}]}], "references": [{"url": "https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0123760"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "NETWORK", "attackComplexity": "HIGH", "privilegesRequired": "HIGH", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseSeverity": "HIGH", "baseScore": 7.6, "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H"}}], "credits": [{"lang": "en", "value": "Mario Tesoro", "type": "finder"}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 1.0.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-19T13:31:02.933079Z", "id": "CVE-2024-42210", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-19T13:31:12.770Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2026-03-23T13:50:36.585Z"}, "references": [{"url": "https://github.com/MarioTesoro/vulnerability-research/blob/main/CVE-2024-42210/README.md"}], "title": "CVE Program Container", "x_generator": {"engine": "ADPogram 0.0.1"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://github.com/MarioTesoro/vulnerability-research/blob/main/CVE-2024-42210/README.md"}], "x_generator": {"engine": "ADPogram 0.0.1"}, "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2026-03-23T13:50:36.585Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-42210", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-19T13:31:02.933079Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-19T13:31:09.058Z"}}], "cna": {"title": "HCL Unica Marketing Operations v12.1.8 and lower is affected by a Stored cross-site scripting (XSS) vulnerability", "source": {"discovery": "UNKNOWN"}, "credits": [{"lang": "en", "type": "finder", "value": "Mario Tesoro"}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "HCLSoftware", "product": "Unica Marketing Operations (Plan)", "versions": [{"status": "affected", "version": "<= 12.1.8"}], "defaultStatus": "unaffected"}], "datePublic": "2026-03-19T07:32:00.000Z", "references": [{"url": "https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0123760"}], "x_generator": {"engine": "Vulnogram 1.0.0"}, "descriptions": [{"lang": "en", "value": "A Stored cross-site scripting (XSS) vulnerability affects HCL Unica Marketing Operations v12.1.8 and lower. \u00a0Stored cross-site scripting (also known as second-order or persistent XSS) arises when an application receives data from an untrusted source and includes that data within its later HTTP responses in an unsafe way.", "supportingMedia": [{"type": "text/html", "value": "A Stored cross-site scripting (XSS) vulnerability affects HCL Unica Marketing Operations v12.1.8 and lower. &nbsp;Stored cross-site scripting (also known as second-order or persistent XSS) arises when an application receives data from an untrusted source and includes that data within its later HTTP responses in an unsafe way.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79 Improper neutralization of input during web page generation ('cross-site scripting')"}]}], "providerMetadata": {"orgId": "1e47fe04-f25f-42fa-b674-36de2c5e3cfc", "shortName": "HCL", "dateUpdated": "2026-03-19T07:32:40.924Z"}}}, "cveMetadata": {"cveId": "CVE-2024-42210", "state": "PUBLISHED", "dateUpdated": "2026-03-23T13:50:36.585Z", "dateReserved": "2024-07-29T21:32:16.370Z", "assignerOrgId": "1e47fe04-f25f-42fa-b674-36de2c5e3cfc", "datePublished": "2026-03-19T07:32:40.924Z", "assignerShortName": "HCL"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:hcltech:unica:*:*:*:*:*:*:*:*", "matchCriteriaId": "F18CA25C-5EA7-4E05-9A3F-FFDCEE06FB2E", "versionEndExcluding": "12.1.9", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A Stored cross-site scripting (XSS) vulnerability affects HCL Unica Marketing Operations v12.1.8 and lower. \u00a0Stored cross-site scripting (also known as second-order or persistent XSS) arises when an application receives data from an untrusted source and includes that data within its later HTTP responses in an unsafe way."}], "id": "CVE-2024-42210", "lastModified": "2026-03-23T14:16:28.747", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.0, "impactScore": 6.0, "source": "psirt@hcl.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.3, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2026-03-19T08:16:18.700", "references": [{"source": "psirt@hcl.com", "tags": ["Vendor Advisory"], "url": "https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0123760"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/MarioTesoro/vulnerability-research/blob/main/CVE-2024-42210/README.md"}], "sourceIdentifier": "psirt@hcl.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "psirt@hcl.com", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,12.1.8]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Unica Marketing Operations (Plan)", "source": "cna", "vendor": "HCLSoftware"}, "product": "unica", "vendor": "hcltech"}], "analysis": {"en": {"generated_at": "2026-03-19T19:21:59.714700+00:00", "value": {"mitigation_remediation": ["Upgrade to a non\u2011vulnerable version of HCL Unica Marketing Operations (any release after 12.1.8) or apply the vendor\u2019s patch if available", "If upgrading is not immediately possible, restrict or sanitize all user\u2011supplied input that is stored and displayed, ensuring any HTML or script content is properly encoded or stripped", "Implement a Content Security Policy (CSP) that limits script execution and reduces the impact of any stored script that escapes validation"], "summary": {"action": "Apply patch", "impact": "Stored Cross\u2011Site Scripting (XSS) leading to potential defacement and data theft"}, "threat_synthesis": {"affected_systems": "HCL Software: Unica Marketing Operations (Plan) version 12.1.8 and earlier. The affected product is listed with the CPE cpe:2.3:a:hcltech:unica:*:*:*:*:*:*:*:*.", "description_and_impact": "A Stored cross\u2011site scripting (XSS) vulnerability allows an attacker to submit malicious script that is later rendered in HTTP responses, enabling the attacker to deface pages or steal data via the victim\u2019s browser. The vulnerability is identified as CWE\u201179 and can result in confidentiality, integrity, and availability impacts through session hijacking, credential theft, or execution of arbitrary client\u2011side code.", "risk_and_exploitability": "The CVSS score of 7.6 classifies the issue as high. EPSS indicates a likelihood of exploitation of less than 1%, and the vulnerability is not currently listed in CISA\u2019s KEV catalog. Based on the description, the likely attack vector is server\u2011side data input that is stored and later served to users; exploitation requires the ability to input data and for other users to view the affected content."}}}}, "created": "2026-03-20T08:57:14.640398+00:00", "updated": "2026-03-20T14:15:40.099128+00:00", "vendors": ["hcltech", "hcltech$PRODUCT$unica"]}