Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

HCL — Vulnerabilities & Security Advisories 57

Browse all 57 CVE security advisories affecting HCL. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by HCL:AIONAftermarket DPCHCL MyXalyticsSametimeHCL DominoHCL NotesHCL AIONHCL ConnectionsAppScan SourceHCL TravelerHCL BigFix WebUIUnica
CVE IDTitleCVSSSeverityPublished
CVE-2025-52637 Multiple security vulnerabilities affect HCL AION — AION 4.5 Medium2026-03-16
CVE-2026-21791 HCL Sametime for Android is affected by sensitive information disclosure — SametimeCWE-532 3.3 Low2026-03-10
CVE-2025-52631 HCL AION is affected by a Missing or Insecure HTTP Strict-Transport-Security (HSTS) Header vulnerability. — AIONCWE-200 3.7 Low2026-02-03
CVE-2025-52623 HCL AION is affected by an Autocomplete HTML Attribute Not Disabled for Password Field vulnerability — AIONCWE-522 3.7 Low2026-02-03
CVE-2025-52628 HCL AION is susceptible to Missing SameSite vulnerability — AIONCWE-1275 4.6 Medium2026-02-03
CVE-2025-52633 HCL AION is susceptible to Missing Content-Security-Policy — AIONCWE-539 3.1 Low2026-02-03
CVE-2025-52629 HCL AION is susceptible to Missing Content-Security-Policy — AIONCWE-1032 3.7 Low2026-02-03
CVE-2025-52626 HCL AION is susceptible to Potential Command Injection vulnerability — AIONCWE-78 4.5 Medium2026-02-03
CVE-2025-52627 HCL AION is susceptible to Incorrect Permission Assignment for Critical Resource — AIONCWE-732 5.5 Medium2026-02-03
CVE-2025-52625 HCL AION is susceptible to Cacheable SSL Page Found vulnerability — AIONCWE-525 3.7 Low2025-10-10
CVE-2025-52624 HCL AION is susceptible to Bypass of the script allow list configuration vulnerability — AIONCWE-1032 5.4 Medium2025-10-10
CVE-2025-52635 HCL AION is susceptible to Trusted types in scripts not enforced in CSP — AIONCWE-1032 3.7 Low2025-10-10
CVE-2025-52632 HCL AION is susceptible to Missing Secure Attribute in Encrypted Session (SSL) Cookie vulnerability — AIONCWE-614 6.5 Medium2025-10-10
CVE-2025-52630 HCL AION is susceptible to Missing or insecure "X-Content-Type-Options" header vulnerability — AIONCWE-200 3.7 Low2025-10-10
CVE-2025-52634 HCL AION is susceptible to Spring Boot Actuator Endpoints Exposed — HCL AIONCWE-200 3.7 Low2025-10-10
CVE-2025-52650 HCL AION is susceptible to Inline script execution allowed in CSP vulnerability — HCL AIONCWE-1032 8.2 High2025-10-10
CVE-2025-52655 HCL MyXalytics is affected by a Cross-Domain Script Include vulnerability. — HCL MyXalyticsCWE-829 3.1 Low2025-10-10
CVE-2025-52656 HCL MyXalytics product is affected by Mass Assignment vulnerability — HCL MyXalyticsCWE-915 7.6 High2025-10-03
CVE-2025-52653 Cross Site Scripting vulnerability in the web application — HCL MyXalyticsCWE-79 7.6 High2025-10-03
CVE-2020-14230 HCL Technologies Domino 输入验证错误漏洞 — HCL Domino 7.5 -2020-11-21
CVE-2020-14258 HCL Software HCL Notes 输入验证错误漏洞 — HCL Notes 7.5 -2020-11-21
CVE-2020-14234 HCL Technologies Domino 输入验证错误漏洞 — HCL Domino 7.5 -2020-11-21
CVE-2020-4104 HCL Technologies BigFix Platform BigFix WebUI 跨站脚本漏洞 — HCL BigFix WebUI 5.4 -2020-07-17
CVE-2020-4089 HCL Technologies Notes 信息泄露漏洞 — HCL Notes 6.5 -2020-06-26
CVE-2019-4209 HCL Technologies Connections 输入验证错误漏洞 — HCL Connections 6.1 -2020-05-01
CVE-2019-4388 HCL Technologies AppScan Source 跨站脚本漏洞 — AppScan Source 5.4 -2019-12-18
CVE-2019-4409 HCL Traveler 跨站脚本漏洞 — HCL Traveler 6.1 -2019-10-18

This page lists every published CVE security advisory associated with HCL. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.