CVE-2025-31971 | THREATINT

Description

AIML Solutions for HCL SX is vulnerable to a URL validation vulnerability. The issue may allow attackers to launch a server-side request forgery (SSRF) attack enabling unauthorized network calls from the system, potentially exposing internal services or sensitive information.

PUBLISHED Reserved 2025-04-01 | Published 2025-08-28 | Updated 2025-08-28 | Assigner HCL

MEDIUM: 5.1CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:U/C:H/I:L/A:L

Problem types

CWE-425 Direct Request ('Forced Browsing')

Product status

Default status

unaffected

1.0 (Framework)

affected

References

support.hcl-software.com/...rticle&sysparm_article=KB0123600

cve.org (CVE-2025-31971)

nvd.nist.gov (CVE-2025-31971)

Download JSON