exploitDog

CVE-2025-55249

Опубликовано: 19 янв. 2026

Источник: nvd

CVSS3: 3.5

CVSS3: 5.3

EPSS Низкий

Описание

HCL AION is affected by a Missing Security Response Headers vulnerability. The absence of standard security headers may weaken the application’s overall security posture and increase its susceptibility to common web-based attacks.

Ссылки

https://support.hcl-software.com/kb_view.do?sys_kb_id=4b92474633de7ad4159a05273e5c7b4b&searchTerm=kb0127995#
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:hcltech:aion:2.0:*:*:*:*:*:*:*

EPSS

Процентиль: 18%

0.00059

Низкий

3.5 Low

CVSS3

5.3 Medium

CVSS3

Дефекты

CWE-693

Связанные уязвимости

GHSA-h2w2-28mj-m289

CVSS3: 3.5

github

19 дней назад

HCL AION is affected by a Missing Security Response Headers vulnerability. The absence of standard security headers may weaken the application’s overall security posture and increase its susceptibility to common web-based attacks.

EPSS

Процентиль: 18%

0.00059

Низкий

3.5 Low

CVSS3

5.3 Medium

CVSS3

Дефекты

CWE-693