HCL AION is susceptible to Cacheable SSL Page Found vulnerability

3.7 / 10

LOW

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Description

A vulnerability

Cacheable SSL Page Found vulnerability has been identified

in HCL AION.

Cached data may expose credentials, system identifiers, or internal file paths to attackers with access to the device or browser

This issue affects AION: 2.0.

Basic Information

ID CVE-2025-52625

Source HCL

Published Oct 10, 2025 at 10:28

Affected Product

Vendor HCL

Product AION

Version 2.0

Affected Versions HCL AION 2.0

CWE Classification

CWE-525

References

support.hcl-software.com /csm

{
    "lastseen": "",
    "description": "A vulnerability\u00a0\n\nCacheable SSL Page Found vulnerability has been identified\n\n in HCL AION.\u00a0\n\nCached data may expose credentials, system identifiers, or internal file paths to attackers with access to the device or browser\n\nThis issue affects AION: 2.0.",
    "published": "2025-10-10T10:28:53.219Z",
    "modified": "2025-10-10T10:28:53.219Z",
    "type": "cve",
    "title": "HCL AION is susceptible to Cacheable SSL Page Found vulnerability",
    "source": "HCL",
    "references": "https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0124444",
    "id": "CVE-2025-52625",
    "bulletinFamily": "",
    "cwe": [
        "CWE-525"
    ],
    "cvelist": null,
    "sourceData": "HCL AION 2.0",
    "sourceHref": "",
    "cvss": {
        "score": 3.7,
        "severity": "LOW",
        "vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "AION",
    "version": "2.0",
    "vendor": "HCL",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

HCL AION is susceptible to Cacheable SSL Page Found vulnerability_CVE-2025-52625