All 7 CVE vulnerabilities found in HCL MyXalytics, with AI-generated Chinese analysis, references, and POCs.
Vendor: HCL Software
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-52655 | HCL MyXalytics is affected by a Cross-Domain Script Include vulnerability. CWE-829 | 3.1 | Low | 2025-10-10 |
| CVE-2025-52656 | HCL MyXalytics product is affected by Mass Assignment vulnerability CWE-915 | 7.6 | High | 2025-10-03 |
| CVE-2025-52654 | HCL MyXalytics is affected by an HTML Injection CWE-80 | 4.6 | Medium | 2025-10-03 |
| CVE-2025-52653 | Cross Site Scripting vulnerability in the web application CWE-79 | 7.6 | High | 2025-10-03 |
| CVE-2024-42178 | HCL MyXalytics is affected by a failure to restrict URL access vulnerability CWE-288 | 2.5 | Low | 2025-04-17 |
| CVE-2024-42177 | HCL MyXalytics is affected by SSL∕TLS Protocol affected with BREACH & LUCKY13 vulnerabilities CWE-326 | 2.6 | Low | 2025-04-17 |
| CVE-2024-42176 | HCL MyXalytics is affected by concurrent login vulnerability | 2.6 | Low | 2025-03-19 |
All 7 known CVE vulnerabilities affecting HCL MyXalytics with full Chinese analysis, references, and POCs where available.