CVE-2025-55275

Summary

HCL Aftermarket DPC is affected by Admin Session Concurrency vulnerability using which an attacker can exploit concurrent sessions to hijack or impersonate an admin user.

Affected Software

VendorProductVersion RangeStatus
HCLAftermarket DPCversion 1.0.0affected

Weaknesses

  • CWE-557: CWE-557: Concurrency Issues is a Category

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References