CVE-2026-56454
Received Received - Intake

Deprecated TLS Protocol Support in HCL DFXAnalytics

Vulnerability report for CVE-2026-56454, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-16

Last updated on: 2026-07-16

Assigner: HCL Software

Description

HCL DFXAnalytics is affected by a Deprecated Protocol vulnerability due to the use of TLS 1.0 and TLS 1.1. These legacy protocols contain numerous cryptographic design flaws that expose data to interception and decryption. To remediate this risk, the application must disable all support for TLS 1.0 and TLS 1.1, and exclusively enable support for secure protocols, specifically TLS 1.2 and TLS 1.3.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-16
Last Modified
2026-07-16
Generated
2026-07-16
AI Q&A
2026-07-16
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
hcl dfxanalytics *

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-327 The product uses a broken or risky cryptographic algorithm or protocol.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

HCL DFXAnalytics uses outdated TLS 1.0 and TLS 1.1 protocols which have known cryptographic flaws. These flaws allow attackers to intercept and decrypt data transmitted between systems. The vulnerability requires disabling TLS 1.0 and 1.1 and enabling only TLS 1.2 or 1.3 for secure communication.

Detection Guidance

To detect TLS 1.0 and TLS 1.1 usage in HCL DFXAnalytics, scan network traffic for connections using these protocols. Use tools like OpenSSL to test supported protocols on the server: 'openssl s_client -connect <server>:<port> -tls1' for TLS 1.0 and 'openssl s_client -connect <server>:<port> -tls1_1' for TLS 1.1. If connections succeed, the vulnerable protocols are enabled.

Impact Analysis

This vulnerability could expose sensitive data to interception during transmission, leading to potential data breaches or unauthorized access. Attackers might decrypt intercepted communications, compromising confidentiality of user data or system communications.

Compliance Impact

Using deprecated TLS versions violates compliance requirements for secure data transmission in GDPR and HIPAA. These regulations mandate strong encryption standards, and TLS 1.0/1.1 do not meet current security requirements, potentially resulting in non-compliance penalties.

Mitigation Strategies

Disable TLS 1.0 and TLS 1.1 in the HCL DFXAnalytics configuration. Update the application to enforce TLS 1.2 or TLS 1.3 exclusively. Verify changes by retesting with OpenSSL commands. Ensure all dependent systems also support the newer protocols to avoid service disruption.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-56454. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart