Unprotected files are impacting HCL Unica Platform_CVE-2025-31996

5.3 / 10

MEDIUM

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N

Description

HCL Unica Platform is affected by unprotected files due to improper access controls. These files may contain sensitive information such as private or system information that can be exploited by attackers to compromise the application, infrastructure, or users.

Basic Information

ID CVE-2025-31996

Source HCL

Published Oct 13, 2025 at 03:46

Affected Product

Vendor HCL Software

Product Unica Platform

Version <= 25.1

Affected Versions HCL Software Unica Platform <= 25.1

CWE Classification

CWE-552

References

support.hcl-software.com /csm

{
    "lastseen": "",
    "description": "HCL Unica Platform is affected by unprotected files due to improper access controls.  \u00a0These files may contain sensitive information such as private or system information that can be exploited by attackers to compromise the application, infrastructure, or users.",
    "published": "2025-10-13T03:46:30.361Z",
    "modified": "2025-10-13T03:46:30.361Z",
    "type": "cve",
    "title": "Unprotected files are impacting HCL Unica Platform",
    "source": "HCL",
    "references": "https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0124418",
    "id": "CVE-2025-31996",
    "bulletinFamily": "",
    "cwe": [
        "CWE-552"
    ],
    "cvelist": null,
    "sourceData": "HCL Software Unica Platform <= 25.1",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Unica Platform",
    "version": "<= 25.1",
    "vendor": "HCL Software",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}