CVE-2025-62308 | THREATINT

Description

HCL AION is affected by a vulnerability where sensitive backend infrastructure details may be exposed. Exposure of such information could reveal internal system architecture or configuration details, which may potentially assist in further analysis or targeted actions under certain conditions

PUBLISHED Reserved 2025-10-10 | Published 2026-05-14 | Updated 2026-05-14 | Assigner HCL

MEDIUM: 5.1CVSS:3.1/AV:A/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L

Problem types

CWE-201: Insertion of Sensitive Information Into Sent Data

Product status

Default status

unaffected

2.1.0

affected

References

support.hcl-software.com/...rticle&sysparm_article=KB0130636

cve.org (CVE-2025-62308)

nvd.nist.gov (CVE-2025-62308)

Download JSON