HCL IEM is affected by an authorization token sent in cookie vulnerability

July 24, 2025 invoker category_cve

CVE Details

Basic Information

Title HCL IEM is affected by an authorization token sent in cookie vulnerability
Type cve
Published 2025-07-24T23:28:00.736Z
Modified 2025-07-25T00:36:16.177Z

Product Information

Vendor HCL Software
Product IEM
Version 1.2

CVSS Information

Base Score 2.2 (LOW)
Attack Vector CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:N/A:N

Affected Products

  • HCL Software IEM 1.2

Additional Information

CWE List CWE-319
Source HCL

Description

HCL IEM is affected by an authorization token sent in cookie vulnerability.  A token used for authentication and authorization is being handled in a manner that may increase its exposure to security risks.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.