Vulnerability Details CVE-2026-35141
HCL DFXAnalytics is affected by a Login Replay Attack vulnerability. The application allows a remote attacker to intercept, delay, or fraudulently retransmit valid authentication data to achieve unauthorized access. To mitigate this risk, the application must implement a mechanism to include timestamps with every message, ensuring that messages exceeding a specific age threshold are automatically rejected by the recipient system.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 9.0%
CVSS Severity
CVSS v3 Score 2.6
Products affected by CVE-2026-35141
-
cpe:2.3:a:hcltech:dfxanalytics:2.6.0
-
cpe:2.3:a:hcltech:dfxanalytics:2.6.1
-
cpe:2.3:a:hcltech:dfxanalytics:2.7.0
-
cpe:2.3:a:hcltech:dfxanalytics:2.8.0
-
cpe:2.3:a:hcltech:dfxanalytics:2.8.1
-
cpe:2.3:a:hcltech:dfxanalytics:2.8.2
-
cpe:2.3:a:hcltech:dfxanalytics:2.9
-
cpe:2.3:a:hcltech:dfxanalytics:2.9.0
-
cpe:2.3:a:hcltech:dfxanalytics:2.9.1
-
cpe:2.3:a:hcltech:dfxanalytics:3.0