| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-0280 | HCL Compass is affected by a security vulnerability | HCL Software | Compass | High | 7.5 | 2025-09-03 15:21:05 | Deep Dive |
| CVE-2025-31971 | AIML Solutions for HCL SX is susceptible to a URL validation vulnerability | HCL Software | AIML Solutions for SX | Medium | 5.1 | 2025-08-28 18:04:17 | Deep Dive |
| CVE-2025-31979 | A File Upload Validation Bypass vulnerability has been identified in the HCL BigFix Service Management (SM) | HCL Software | BigFix Service Management (SM) | Medium | 5.4 | 2025-08-28 17:06:31 | Deep Dive |
| CVE-2025-31977 | A cryptographic weakness has been identified in the HCL BigFix Service Management (SM) | HCL Software | BigFix Service Management (SM) | Medium | 5.3 | 2025-08-28 17:00:14 | Deep Dive |
| CVE-2025-31972 | HCL BigFix Service Management (SM) is affected by a Sensitive Information Exposure vulnerability | HCL Software | BigFix Service Management (SM) | Medium | 6.5 | 2025-08-28 16:50:08 | Deep Dive |
| CVE-2025-31988 | HCL Digital Experience is susceptible to cross site scripting (XSS) | HCL Software | Digital Experience | Medium | 4.9 | 2025-08-19 18:12:07 | Deep Dive |
| CVE-2025-52618 | HCL BigFix SaaS Authentication Service is affected by a SQL injection vulnerability | HCL Software | BigFix SaaS Remediate | Medium | 4.3 | 2025-08-15 22:49:24 | Deep Dive |
| CVE-2025-52619 | HCL BigFix SaaS Authentication Service is affected by a sensitive information disclosure | HCL Software | BigFix SaaS Remediate | Medium | 5.3 | 2025-08-15 22:48:40 | Deep Dive |
| CVE-2025-52620 | HCL BigFix SaaS Authentication Service is affected by a Cross-Site Scripting (XSS) vulnerability | HCL Software | BigFix SaaS Remediate | Medium | 4.3 | 2025-08-15 22:47:49 | Deep Dive |
| CVE-2025-52621 | HCL BigFix SaaS Authentication Service is vulnerable to cache poisoning | HCL Software | BigFix SaaS Remediate | Medium | 5.3 | 2025-08-15 22:45:56 | Deep Dive |
| CVE-2025-31961 | HCL Connections is vulnerable to broken access control | HCL Software | Connections | Low | 3.7 | 2025-08-15 04:29:59 | Deep Dive |
| CVE-2025-31987 | HCL Connections Docs is vulnerable to a Denial of Service (DoS) attack | HCL Software | Connections Docs | Medium | 4.8 | 2025-08-14 22:06:59 | Deep Dive |
| CVE-2025-31965 | HCL BigFix Remote Control is affected by an authorization bypass vulnerability | HCL Software | BigFix Remote Control | High | 8.2 | 2025-07-29 16:53:03 | Deep Dive |
| CVE-2025-0253 | HCL IEM is affected by a cookie attribute not set vulnerability | HCL Software | IEM | Low | 2.0 | 2025-07-25 00:16:20 | Deep Dive |
| CVE-2025-0252 | HCL IEM is affected by a password in cleartext vulnerability | HCL Software | IEM | Low | 2.6 | 2025-07-25 00:08:14 | Deep Dive |
| CVE-2025-0251 | HCL IEM is affected by a concurrent login vulnerability | HCL Software | IEM | Low | 2.6 | 2025-07-25 00:06:08 | Deep Dive |
| CVE-2025-0250 | HCL IEM is affected by an authorization token sent in cookie vulnerability | HCL Software | IEM | Low | 2.2 | 2025-07-24 23:28:01 | Deep Dive |
| CVE-2025-0249 | HCL IEM is affected by an improper invalidation of access or JWT token vulnerability | HCL Software | IEM | Low | 3.3 | 2025-07-24 23:19:20 | Deep Dive |
| CVE-2025-31952 | HCL iAutomate is affected by an insufficient session expiration | HCL Software | iAutomate | High | 7.1 | 2025-07-24 21:01:58 | Deep Dive |
| CVE-2025-31955 | HCL iAutomate is affected by a sensitive data exposure vulnerability | HCL Software | iAutomate | High | 7.6 | 2025-07-24 20:59:35 | Deep Dive |