CVE-2025-55268

EPSS 0.02%
Veröffentlicht 26.03.2026 13:00:58
Zuletzt bearbeitet 26.03.2026 20:34:20
Quelle psirt@hcl.com
CVE-Watchlists
Login
Unerledigt
Login

HCL Aftermarket DPC is affected by Spamming Vulnerability

HCL Aftermarket DPC is affected by Spamming Vulnerability which can allow the actor to excessive spamming can consume server bandwidth and processing resources which may lead to Denial of Service.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Hcltech ≫ Aftermarket Cloud Version1.0.0

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.046

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
psirt@hcl.com	4.3	2.8	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

CWE-799 Improper Control of Interaction Frequency

The product does not properly limit the number or frequency of interactions that it has with an actor, such as the number of incoming requests.

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0129793

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-55268

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-55268

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-55268

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-55268