CVE-2025-55262 | THREATINT

Description

HCL Aftermarket DPC is affected by SQL Injection which allows attacker to exploit this vulnerability to retrieve sensitive information from the database.

PUBLISHED Reserved 2025-08-12 | Published 2026-03-26 | Updated 2026-03-26 | Assigner HCL

HIGH: 8.3CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:H

Problem types

CWE-798: Use of Hardcoded Credentials

Product status

Default status

unaffected

version 1.0.0

affected

References

support.hcl-software.com/...rticle&sysparm_article=KB0129793

cve.org (CVE-2025-55262)

nvd.nist.gov (CVE-2025-55262)

Download JSON