CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-31997

HCL Unica Centralized Offer Management is vulnerable to Insecure Direct Object References (IDOR). An attacker can bypass authorization and access resources in the system directly, for example database records or files.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 6.7%

CVSS Severity

CVSS v3 Score 4.2

References

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0124422

Products affected by CVE-2025-31997

Hcltech » Unica Centralized Offer Management » Version: Any

cpe:2.3:a:hcltech:unica_centralized_offer_management:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-31997

Products

Pricing

Contact Us