CVE-2025-52653 | THREATINT

Description

HCL MyXalytics product is affected by Cross Site Scripting vulnerability in the web application. This can allow the execution of unauthorized scripts, potentially resulting in unauthorized actions or access.

PUBLISHED Reserved 2025-06-18 | Published 2025-10-03 | Updated 2025-10-03 | Assigner HCL

HIGH: 7.6CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:H

Problem types

CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')

Product status

Default status

unaffected

6.6

affected

References

support.hcl-software.com/...rticle&sysparm_article=KB0124411

cve.org (CVE-2025-52653)

nvd.nist.gov (CVE-2025-52653)

Download JSON