Search
Search Results (7 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-55251 | 1 Hcltech | 1 Aion | 2026-01-30 | 3.1 Low |
| HCL AION is affected by an Unrestricted File Upload vulnerability. This can allow malicious file uploads, potentially resulting in unauthorized code execution or system compromise. | ||||
| CVE-2025-55249 | 1 Hcltech | 1 Aion | 2026-01-30 | 3.5 Low |
| HCL AION is affected by a Missing Security Response Headers vulnerability. The absence of standard security headers may weaken the application’s overall security posture and increase its susceptibility to common web-based attacks. | ||||
| CVE-2025-52661 | 1 Hcltech | 1 Aion | 2026-01-30 | 2.4 Low |
| HCL AION version 2 is affected by a JWT Token Expiry Too Long vulnerability. This may increase the risk of token misuse, potentially resulting in unauthorized access if the token is compromised. | ||||
| CVE-2025-52660 | 1 Hcltech | 1 Aion | 2026-01-30 | 2.7 Low |
| HCL AION is affected by an Unrestricted File Upload vulnerability. This can allow malicious file uploads, potentially resulting in unauthorized code execution or system compromise. | ||||
| CVE-2025-52659 | 1 Hcltech | 1 Aion | 2026-01-30 | 2.8 Low |
| HCL AION version 2 is affected by a Cacheable HTTP Response vulnerability. This may lead to unintended storage of sensitive or dynamic content, potentially resulting in unauthorized access or information disclosure. | ||||
| CVE-2025-55252 | 1 Hcltech | 1 Aion | 2026-01-30 | 3.1 Low |
| HCL AION version 2 is affected by a Weak Password Policy vulnerability. This can allow the use of easily guessable passwords, potentially resulting in unauthorized access | ||||
| CVE-2025-55250 | 1 Hcltech | 1 Aion | 2026-01-30 | 1.8 Low |
| HCL AION version 2 is affected by a Technical Error Disclosure vulnerability. This can expose sensitive technical details, potentially resulting in information disclosure or aiding further attacks. | ||||
Page 1 of 1.