CVE-2025-59854
- EPSS 0.03%
- Veröffentlicht 06.05.2026 10:27:08
- Zuletzt bearbeitet 07.05.2026 20:02:54
HCL DFXAnalytics is affected by an Insecure Security Header Configuration vulnerability where the application utilizes the outdated X-XSS-Protection header, which could allow an attacker to exploit browser-specific rendering flaws or bypass security ...
CVE-2025-59853
- EPSS 0.03%
- Veröffentlicht 06.05.2026 10:26:25
- Zuletzt bearbeitet 07.05.2026 20:03:12
HCL DFXAnalytics is affected by an Improper Error Handling vulnerability where the application exposes detailed stack traces in responses, which could allow an attacker to gain insights into the application's internal structure, code logic, and envir...
CVE-2025-59852
- EPSS 0.01%
- Veröffentlicht 06.05.2026 10:25:29
- Zuletzt bearbeitet 07.05.2026 20:03:28
HCL DFXAnalytics is affected by an Insufficient Transport Layer Protection vulnerability where data is transmitted over the network without encryption, which could allow an attacker to compromise the confidentiality, integrity, and authentication o...
CVE-2025-59851
- EPSS 0.05%
- Veröffentlicht 06.05.2026 10:24:54
- Zuletzt bearbeitet 07.05.2026 20:04:10
HCL DFXAnalytics is affected by a Using Components with Known Vulnerabilities flaw where the application utilizes unpatched libraries or sub-components, which could allow an attacker to identify and exploit publicly known security vulnerabilities to ...
CVE-2025-31970
- EPSS 0.03%
- Veröffentlicht 06.05.2026 10:22:41
- Zuletzt bearbeitet 07.05.2026 19:58:05
HCL DFXAnalytics is affected by an Insecure Security Header configuration vulnerability where the Content-Security-Policy does not define strict directives for object-src and base-uri, which could allow an attacker to exploit injection vectors such a...