CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-52628

HCL AION is affected by a Cookie with Insecure, Improper, or Missing SameSite vulnerability. This can allow cookies to be sent in cross-site requests, potentially increasing exposure to cross-site request forgery and related security risks. This issue affects AION: 2.0.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.4%

CVSS Severity

CVSS v3 Score 4.6

References

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0127972

Products affected by CVE-2025-52628

Hcltech » Aion » Version: 2.0

cpe:2.3:a:hcltech:aion:2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-52628

Products

Pricing

Contact Us