HCL AION is affected by a vulnerability where basic authorization...

3 / 10

LOW

CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N

Description

HCL AION is affected by a vulnerability where basic authorization tokens are used for authentication. Use of basic authorization mechanisms may expose credentials to potential interception or misuse, especially if not combined with secure transmission practices.

Basic Information

ID CVE-2025-62312

Source HCL

Published May 14, 2026 at 16:09

Affected Product

Vendor HCL

Product AION

Version 2.1.0

Affected Versions HCL AION 2.1.0

CWE Classification

CWE-522

References

support.hcl-software.com /csm

{
    "lastseen": "",
    "description": "HCL AION is affected by a vulnerability where basic authorization tokens are used for authentication. Use of basic authorization mechanisms may expose credentials to potential interception or misuse, especially if not combined with secure transmission practices.",
    "published": "2026-05-14T16:09:35.944Z",
    "modified": "2026-05-14T16:09:35.944Z",
    "type": "cve",
    "title": "HCL AION is affected by a vulnerability where basic authorization tokens are used for authentication",
    "source": "HCL",
    "references": "https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0130636",
    "id": "CVE-2025-62312",
    "bulletinFamily": "",
    "cwe": [
        "CWE-522"
    ],
    "cvelist": null,
    "sourceData": "HCL AION 2.1.0",
    "sourceHref": "",
    "cvss": {
        "score": 3,
        "severity": "LOW",
        "vector": "CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "AION",
    "version": "2.1.0",
    "vendor": "HCL",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

HCL AION is affected by a vulnerability where basic authorization tokens are used for authentication_CVE-2025-62312