CVE-2025-55268
HCL Aftermarket DPC is affected by Spamming Vulnerability
In short
HCL Aftermarket DPC allows attackers to send excessive spam messages that can overload the server, causing it to become slow or unavailable for legitimate users.
Technical detail
The application lacks rate limiting or input validation controls (CWE-799), allowing unauthenticated or low-privileged actors to flood the server with requests, exhausting bandwidth and CPU resources and triggering a denial-of-service condition.
Summary generated and translated by AI from the official description.
HCL Aftermarket DPC is affected by Spamming Vulnerability which can allow the actor to excessive spamming can consume server bandwidth and processing resources which may lead to Denial of Service.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
Affected products
HCL · Aftermarket DPCWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →