CVE-2025-55265
HCL Aftermarket DPC is affected by File Discovery
In short
HCL Aftermarket DPC has a flaw that lets attackers discover and read sensitive files on the system. This information can be used to plan more serious attacks.
Technical detail
File discovery vulnerability in HCL Aftermarket DPC (CWE-200: Exposure of Sensitive Information) allows an unauthenticated or low-privileged attacker to enumerate and access sensitive files on the affected system, potentially revealing credentials, configuration data, or system details that facilitate subsequent attack chains.
Summary generated and translated by AI from the official description.
HCL Aftermarket DPC is affected by File Discovery which allows attacker could exploit this issue to read sensitive files present in the system and may use it to craft further attacks.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Affected products
HCL · Aftermarket DPCWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →