CVE-2025-31969
4
CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:L
Summary
HCL Unica Platform is impacted by misconfigured Content Security Policy (CSP). These can result in malicious resources getting loaded and browsers may come across certain types of attacks, such as cross-site scripting and clickjacking.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| HCL Software | Unica Platform | <= 25.1 | affected |
Weaknesses
- CWE-358: CWE-358 Improperly Implemented Security Check for Standard
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.