All 6 CVE vulnerabilities found in iControl, with AI-generated Chinese analysis, references, and POCs.
Vendor: HCL
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-62340 | HCL iControl was affected by Inadequate Session Timeout vulnerability CWE-613 | 3.1 | Low | 2026-06-17 |
| CVE-2025-52606 | HCL iControl was affected by Weak Input Validation vulnerability. . CWE-209 | 4.3 | Medium | 2026-06-04 |
| CVE-2025-52608 | HCL iControl was affected by Missing Cookie Attributes vulnerability. CWE-614 | 3.1 | Low | 2026-06-04 |
| CVE-2025-52609 | HCL iControl was affected by Missing Security Headers vulnerability. CWE-693 | 3.7 | Low | 2026-06-04 |
| CVE-2025-52611 | HCL iControl was affected by Unhandled Exception - Stack Trace Disclosure vulnerability CWE-209 | 3.1 | Low | 2026-06-04 |
| CVE-2025-52612 | HCL iControl was affected by Export CSV - CSV Injection vulnerability. CWE-1236 | 7.1 | High | 2026-06-04 |
All 6 known CVE vulnerabilities affecting iControl with full Chinese analysis, references, and POCs where available.