← back
CVE-2025-52616

HCL Unica 12.1.10 is affected by an exposure of sensitive information

CVSS 5.3 MEDIUMEPSS 0.2%CWE-497
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.3EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
12 Oct 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
HCL Unica 12.1.10 can expose sensitive system information. An attacker could use this information to form an attack plan by leveraging known vulnerabilities in the application.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Affected products
HCL Software · Unica

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0124230