Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

AION — Vulnerabilities & Security Advisories 30

All 30 CVE vulnerabilities found in AION, with AI-generated Chinese analysis, references, and POCs.

Vendor: HCL

CVE IDTitleCVSSSeverityPublished
CVE-2025-52641 Internal Filesystem Exploration vulnerability 2.9 Low2026-04-15
CVE-2025-52642 HCL AION is affected by an internal filesystem paths disloser vulnerability 3.3 Low2026-03-16
CVE-2025-52646 HCL AION is affected by a vulnerability where certain offering configurations may permit execution of potentially harmful SQL queries. 2.2 Low2026-03-16
CVE-2025-52645 HCL AION is affected by a vulnerability where model packaging and distribution mechanisms may not include sufficient authenticity verification. 1.9 Low2026-03-16
CVE-2025-52649 HCL AION is affected by a vulnerability where certain identifiers may be predictable in nature 1.8 Low2026-03-16
CVE-2025-52644 HCL AION is affected by a vulnerability where certain user actions are not adequately audited or logged. 5.8 Medium2026-03-16
CVE-2025-52643 HCL AION is affected by a vulnerability where untrusted file parsing operations are not executed within a properly isolated sandbox environment 4.7 Medium2026-03-16
CVE-2025-52636 HCL AION is affected by a improper handling of uploads files Size 1.8 Low2026-03-16
CVE-2025-52648 HCL AION 安全漏洞 4.8 Medium2026-03-16
CVE-2025-52638 Multiple security vulnerabilities affect HCL AION 5.6 Medium2026-03-16
CVE-2025-52637 Multiple security vulnerabilities affect HCL AION 4.5 Medium2026-03-16
CVE-2025-52631 HCL AION is affected by a Missing or Insecure HTTP Strict-Transport-Security (HSTS) Header vulnerability. CWE-200 3.7 Low2026-02-03
CVE-2025-52623 HCL AION is affected by an Autocomplete HTML Attribute Not Disabled for Password Field vulnerability CWE-522 3.7 Low2026-02-03
CVE-2025-52628 HCL AION is susceptible to Missing SameSite vulnerability CWE-1275 4.6 Medium2026-02-03
CVE-2025-52633 HCL AION is susceptible to Missing Content-Security-Policy CWE-539 3.1 Low2026-02-03
CVE-2025-52629 HCL AION is susceptible to Missing Content-Security-Policy CWE-1032 3.7 Low2026-02-03
CVE-2025-52626 HCL AION is susceptible to Potential Command Injection vulnerability CWE-78 4.5 Medium2026-02-03
CVE-2025-52627 HCL AION is susceptible to Incorrect Permission Assignment for Critical Resource CWE-732 5.5 Medium2026-02-03
CVE-2025-55252 HCL AION is affected by a Weak Password Policy vulnerability CWE-521 3.1 Low2026-01-19
CVE-2025-55250 HCL AION is affected by a Technical Error Disclosure vulnerability CWE-209 1.8 Low2026-01-19
CVE-2025-52661 HCL AION 安全漏洞 CWE-613 2.4 Low2026-01-19
CVE-2025-55249 HCL AION is affected by a Missing Security Response Headers vulnerability. CWE-693 3.5 Low2026-01-19
CVE-2025-52659 HCL AION is affected by a Cacheable HTTP Response vulnerability CWE-525 2.8 Low2026-01-19
CVE-2025-52660 HCL AION is affected by an Host Header Injection vulnerability CWE-644 2.7 Low2026-01-19
CVE-2025-55251 HCL AION is affected by an Unrestricted File Upload vulnerability CWE-434 3.1 Low2026-01-19
CVE-2025-52625 HCL AION is susceptible to Cacheable SSL Page Found vulnerability CWE-525 3.7 Low2025-10-10
CVE-2025-52624 HCL AION is susceptible to Bypass of the script allow list configuration vulnerability CWE-1032 5.4 Medium2025-10-10
CVE-2025-52635 HCL AION is susceptible to Trusted types in scripts not enforced in CSP CWE-1032 3.7 Low2025-10-10
CVE-2025-52632 HCL AION is susceptible to Missing Secure Attribute in Encrypted Session (SSL) Cookie vulnerability CWE-614 6.5 Medium2025-10-10
CVE-2025-52630 HCL AION is susceptible to Missing or insecure "X-Content-Type-Options" header vulnerability CWE-200 3.7 Low2025-10-10

All 30 known CVE vulnerabilities affecting AION with full Chinese analysis, references, and POCs where available.