← voltar
CVE-2025-62312

HCL AION is affected by a vulnerability where basic authorization tokens are used for authentication

CVSS 3 LOWEPSS 0.1%CWE-522
Vexday Risk Score
8Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 3EPSS 0.1%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
14 mai 2026Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
HCL AION is affected by a vulnerability where basic authorization tokens are used for authentication. Use of basic authorization mechanisms may expose credentials to potential interception or misuse, especially if not combined with secure transmission practices.
CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
Produtos afetados
HCL · AION

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0130636