CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-52629

HCL AION is susceptible to Missing Content-Security-Policy. An The absence of a CSP header may increase the risk of cross-site scripting and other content injection attacks by allowing unsafe scripts or resources to execute..This issue affects AION: 2.0.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.7%

CVSS Severity

CVSS v3 Score 3.7

References

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0127972

Products affected by CVE-2025-52629

Hcltech » Aion » Version: 2.0

cpe:2.3:a:hcltech:aion:2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-52629

Products

Pricing

Contact Us