Export CSV

Products

1 vendor
VendorProductsCVEsKEVAvg EPSSWorst Severity
24013.4%CRITICAL

Related CVEs

4
CVE IDDescriptionSeverityCVSSKEVEPSSPublished
CVE-2025-52648HCL AION is affected by a vulnerability where offering images are not digitally signed. Lack of image signing may allow the use of unverified or tampered images, potentially leading to security risks such as integrity compromise or unintended behavior in the systemCRITICAL9.81.9%Mar 16, 2026
CVE-2025-52638HCL AION is affected by a vulnerability where generated containers may execute binaries with root-level privileges. Running containers with root privileges may increase the potential security risk, as it grants elevated permissions within the container environment. Aligning container configurations with security best practices requires minimizing privileges and avoiding root-level execution wherever possible.HIGH7.22.8%Mar 16, 2026
CVE-2025-52637HCL AION is affected by a vulnerability where certain offering configurations may permit execution of potentially harmful SQL queries. Improper validation or restrictions on query execution could expose the system to unintended database interactions or limited information exposure under specific conditions.HIGH7.313.1%Mar 16, 2026
CVE-2023-28015The HCL Domino AppDev Pack IAM service is susceptible to a User Account Enumeration vulnerability.   During a failed login attempt a difference in messages could allow an attacker to determine if the user is valid or not.  The attacker could use this information to focus a brute force attack on valid users. MEDIUM5.335.9%May 23, 2023