CVE-2025-55251

CVSS Score & Metrics

Base Score

3.1 / 10

Vector String

                                        CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:L                                    

Vulnerability Description

HCL AION is affected by an Unrestricted File Upload vulnerability. This can allow malicious file uploads, potentially resulting in unauthorized code execution or system compromise.

Vulnerability Details

Published Date

January 19, 2026

Last Modified

January 26, 2026

CWE ID

CWE-434

Source

NVD

Vendor

HCL Software

Product

AION

External References

https://support.hcl-software.com/kb_view.do?sys_kb_id=4b92474633de7ad4159a05273e5c7b4b&searchTerm=kb0127995#

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment