Primary

Context

HCL IEM Authorization Token Exposure Vulnerability

Vulnerability

A vulnerability exists in HCL IEM version 1.2, where an authorization token used for authentication is sent in cookies, potentially increasing its exposure to security risks. This vulnerability could allow unauthorized access or manipulation of user data.

Impact

Exposing authorization tokens in cookies can lead to unauthorized access or actions on behalf of the user, potentially allowing attackers to manipulate or access sensitive information.

Remediation

Users can upgrade to HCL IEM version 1.3, which addresses this vulnerability. HCL IEM support can assist with the upgrade process.

Added: Jul 25, 2025, 12:32 AM

Updated: Jul 25, 2025, 12:32 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.0

exploitability

4.8

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.0

exploitability

4.8

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

HCL IEM Authorization Token Exposure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating