Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

HCL — Vulnerabilities & Security Advisories 57

Browse all 57 CVE security advisories affecting HCL. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top 10 Products HCL:AIONAftermarket DPCHCL MyXalyticsSametimeHCL DominoHCL NotesHCL AIONHCL ConnectionsAppScan SourceHCL TravelerHCL BigFix WebUIUnica
CVE IDTitleCVSSSeverityPaused
CVE-2025-52641 Internal Filesystem Exploration vulnerability — AION 2.9 Low2026-04-15
CVE-2025-55261 HCL Aftermarket DPC is affected by Missing Functional Level Access Control — Aftermarket DPCCWE-284 8.1 High2026-03-26
CVE-2025-55262 HCL Aftermarket DPC is affected by SQL Injection — Aftermarket DPCCWE-798 8.3 High2026-03-26
CVE-2025-55263 HCL Aftermarket DPC is affected by Hardcoded Sensitive Data — Aftermarket DPCCWE-798 7.3 High2026-03-26
CVE-2025-55264 HCL Aftermarket DPC is affected by Failure to Invalidate Session on Password Change — Aftermarket DPCCWE-613 5.5 Medium2026-03-26
CVE-2025-55265 HCL Aftermarket DPC is affected by File Discovery — Aftermarket DPCCWE-200 6.5 Medium2026-03-26
CVE-2025-55266 HCL Aftermarket DPC is affected by Session Fixation — Aftermarket DPCCWE-384 5.9 Medium2026-03-26
CVE-2025-55267 HCL Aftermarket DPC is affected by Unrestricted File Upload vulnerability — Aftermarket DPCCWE-434 5.7 Medium2026-03-26
CVE-2025-55268 HCL Aftermarket DPC is affected by Spamming Vulnerability — Aftermarket DPCCWE-799 4.3 Medium2026-03-26
CVE-2025-55269 HCL Aftermarket DPC is affected by Weak Password Policy vulnerability — Aftermarket DPCCWE-521 4.2 Medium2026-03-26
CVE-2025-55270 HCL Aftermarket DPC is affected by Improper Input Validation — Aftermarket DPCCWE-20 3.5 Low2026-03-26
CVE-2025-55271 HCL Aftermarket DPC is affected by HTTP Response Splitting vulnerability — Aftermarket DPCCWE-113 3.1 Low2026-03-26
CVE-2025-55272 HCL Aftermarket DPC is affected by Banner Disclosure vulnerability — Aftermarket DPCCWE-200 3.1 Low2026-03-26
CVE-2025-55273 HCL Aftermarket DPC is affected by Cross Domain Script Include vulnerability — Aftermarket DPCCWE-829 4.3 Medium2026-03-26
CVE-2025-55274 HCL Aftermarket DPC is affected by Cross-Origin Resource Sharing vulnerability — Aftermarket DPCCWE-942 2.6 Low2026-03-26
CVE-2025-55275 HCL Aftermarket DPC is affected by Admin Session Concurrency vulnerability — Aftermarket DPCCWE-557 3.7 Low2026-03-26
CVE-2025-55276 HCL Aftermarket DPC is affected by Internal IP Disclosure vulnerability — Aftermarket DPCCWE-200 3.1 Low2026-03-26
CVE-2025-55277 HCL Aftermarket DPC is affected by Use of Vulnerable/Outdated Versions vulnerability — Aftermarket DPCCWE-1104 2.6 Low2026-03-26
CVE-2025-62320 HTML Injection Leading to Data Exfiltration to External Server vulnerability affects HCL Unica Platform — SametimeCWE-79 4.7 Medium2026-03-17
CVE-2025-31966 Boolean-Based SQL Injection in Multiple Unica Components — SametimeCWE-20 2.7 Low2026-03-17
CVE-2025-62319 Boolean-Based SQL Injection in Multiple Unica Components — UnicaCWE-89 9.8 Critical2026-03-16
CVE-2025-52642 HCL AION is affected by an internal filesystem paths disloser vulnerability — AION 3.3 Low2026-03-16
CVE-2025-52646 HCL AION is affected by a vulnerability where certain offering configurations may permit execution of potentially harmful SQL queries. — AION 2.2 Low2026-03-16
CVE-2025-52645 HCL AION is affected by a vulnerability where model packaging and distribution mechanisms may not include sufficient authenticity verification. — AION 1.9 Low2026-03-16
CVE-2025-52649 HCL AION is affected by a vulnerability where certain identifiers may be predictable in nature — AION 1.8 Low2026-03-16
CVE-2025-52644 HCL AION is affected by a vulnerability where certain user actions are not adequately audited or logged. — AION 5.8 Medium2026-03-16
CVE-2025-52643 HCL AION is affected by a vulnerability where untrusted file parsing operations are not executed within a properly isolated sandbox environment — AION 4.7 Medium2026-03-16
CVE-2025-52636 HCL AION is affected by a improper handling of uploads files Size — AION 1.8 Low2026-03-16
CVE-2025-52648 HCL AION 安全漏洞 — AION 4.8 Medium2026-03-16
CVE-2025-52638 Multiple security vulnerabilities affect HCL AION — AION 5.6 Medium2026-03-16

This page lists every published CVE security advisory associated with HCL. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.