CVE-2025-52661

CVSS Score & Metrics

Base Score

2.4 / 10

Vector String

                                        CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N                                    

Vulnerability Description

HCL AION version 2 is affected by a JWT Token Expiry Too Long vulnerability. This may increase the risk of token misuse, potentially resulting in unauthorized access if the token is compromised.

Vulnerability Details

Published Date

January 19, 2026

Last Modified

January 26, 2026

CWE ID

CWE-613

Source

NVD

Vendor

HCL Software

Product

AION

External References

https://support.hcl-software.com/kb_view.do?sys_kb_id=4b92474633de7ad4159a05273e5c7b4b&searchTerm=kb0127995#

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment