CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-62330

HCL DevOps Deploy is susceptible to a cleartext transmission of sensitive information because the HTTP port remains accessible and does not redirect to HTTPS as intended. As a result, an attacker with network access could intercept or modify user credentials and session-related data via passive monitoring or man-in-the-middle attacks.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 2.6%

CVSS Severity

CVSS v3 Score 5.9

References

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0127333

Products affected by CVE-2025-62330

Hcltechsw » Hcl Devops Deploy » Version: 8.1.0

cpe:2.3:a:hcltechsw:hcl_devops_deploy:8.1.0
Hcltechsw » Hcl Devops Deploy » Version: 8.1.0.1

cpe:2.3:a:hcltechsw:hcl_devops_deploy:8.1.0.1
Hcltechsw » Hcl Devops Deploy » Version: 8.1.1

cpe:2.3:a:hcltechsw:hcl_devops_deploy:8.1.1
Hcltechsw » Hcl Devops Deploy » Version: 8.1.2.0

cpe:2.3:a:hcltechsw:hcl_devops_deploy:8.1.2.0
Hcltechsw » Hcl Devops Deploy » Version: 8.1.2.1

cpe:2.3:a:hcltechsw:hcl_devops_deploy:8.1.2.1
Hcltechsw » Hcl Devops Deploy » Version: 8.1.2.2

cpe:2.3:a:hcltechsw:hcl_devops_deploy:8.1.2.2
Hcltechsw » Hcl Devops Deploy » Version: 8.1.2.3

cpe:2.3:a:hcltechsw:hcl_devops_deploy:8.1.2.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-62330

Products

Pricing

Contact Us