CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-52631

HCL AION is affected by a Missing or Insecure HTTP Strict-Transport-Security (HSTS) Header vulnerability. This can allow insecure connections, potentially exposing the application to man-in-the-middle and protocol downgrade attacks.. This issue affects AION: 2.0.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.8%

CVSS Severity

CVSS v3 Score 3.7

References

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0127972

Products affected by CVE-2025-52631

Hcltech » Aion » Version: 2.0

cpe:2.3:a:hcltech:aion:2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-52631

Products

Pricing

Contact Us