exploitDog

CVE-2025-52656

Опубликовано: 03 окт. 2025

Источник: nvd

CVSS3: 7.6

EPSS Низкий

Описание

HCL MyXalytics: 6.6. is affected by Mass Assignment vulnerability. Mass Assignment occurs when user input is automatically bound to application objects without proper validation or access controls, potentially allowing unauthorized modification of sensitive fields.

Ссылки

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0124411
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:hcltech:dryice_myxalytics:6.6:*:*:*:*:*:*:*

EPSS

Процентиль: 30%

0.00109

Низкий

7.6 High

CVSS3

Дефекты

CWE-915

Связанные уязвимости

GHSA-3mgq-766r-8vr6

CVSS3: 7.6

github

4 месяца назад

HCL MyXalytics: 6.6. is affected by Mass Assignment vulnerability. Mass Assignment occurs when user input is automatically bound to application objects without proper validation or access controls, potentially allowing unauthorized modification of sensitive fields.

EPSS

Процентиль: 30%

0.00109

Низкий

7.6 High

CVSS3

Дефекты

CWE-915