CVE-2025-31996
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-10-13
Last updated on: 2025-10-21
Assigner: HCL Software
Description
Description
HCL Unica Platform is affected by unprotected files due to improper access controls. These files may contain sensitive information such as private or system information that can be exploited by attackers to compromise the application, infrastructure, or users.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| hcltech | unica | to 25.1.0.1 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-552 | The product makes files or directories accessible to unauthorized actors, even though they should not be. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in HCL Unica Platform involves unprotected files due to improper access controls. These files may contain sensitive or private system information that attackers could exploit to compromise the application, infrastructure, or users.
How can this vulnerability impact me? :
The vulnerability can lead to unauthorized access to sensitive information, potentially allowing attackers to compromise the application, its underlying infrastructure, or the users relying on it.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70