CVE 3.1 LOW

HCL iControl was affected by Inadequate Session Timeout vulnerability_CVE-2025-62340

June 17, 2026 invoker category_cve
3.1 / 10
LOW
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N

Description

HCL iControl was affected by Inadequate Session Timeout vulnerability. The vulnerability involves a security risk where a web application fails to automatically terminate user sessions after a period of inactivity

Basic Information

ID CVE-2025-62340
Source HCL
Published Jun 17, 2026 at 12:17

Affected Product

Vendor HCL Software
Product iControl
Version v4.2.0
Affected Versions HCL Software iControl v4.2.0

CWE Classification

CWE-613

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.