CVE-2025-55265 | THREATINT

Description

HCL Aftermarket DPC is affected by File Discovery which allows attacker could exploit this issue to read sensitive files present in the system and may use it to craft further attacks.

PUBLISHED Reserved 2025-08-12 | Published 2026-03-26 | Updated 2026-03-26 | Assigner HCL

MEDIUM: 6.5CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Problem types

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor

Product status

Default status

unaffected

version 1.0.0

affected

References

support.hcl-software.com/...rticle&sysparm_article=KB0129793

cve.org (CVE-2025-55265)

nvd.nist.gov (CVE-2025-55265)

Download JSON