CVE-2025-52659

Summary

HCL AION version 2 is affected by a Cacheable HTTP Response vulnerability. This may lead to unintended storage of sensitive or dynamic content, potentially resulting in unauthorized access or information disclosure.

Affected Software

VendorProductVersion RangeStatus
HCL SoftwareAION2affected

Weaknesses

  • CWE-525: CWE-525: Use of Web Browser Cache Containing Sensitive Information

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References