Vulnerability Details CVE-2025-59870
HCL MyXalytics is affected by improper management of a static JWT signing secret in the web application, where the secret lacks rotation , introducing a security risk
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 12.2%
CVSS Severity
CVSS v3 Score 7.4
Products affected by CVE-2025-59870
-
cpe:2.3:a:hcltech:myxalytics:6.2
-
cpe:2.3:a:hcltech:myxalytics:6.3
-
cpe:2.3:a:hcltech:myxalytics:6.4
-
cpe:2.3:a:hcltech:myxalytics:6.5
-
cpe:2.3:a:hcltech:myxalytics:6.6
-
cpe:2.3:a:hcltech:myxalytics:6.7