Primary

Context

HCL Unica Platform Improper Access Control Vulnerability Allowing Exposure of Sensitive Information

Vulnerability

A vulnerability exists in HCL Unica Platform in versions through 25.1, where improper access controls have led to the presence of unprotected files. These files may contain sensitive information, including private or system data, which could be exploited by attackers to compromise the application, infrastructure, or users.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive information, potentially allowing attackers to compromise the application, its infrastructure, or its users.

Remediation

Users are advised to upgrade to HCL Unica Platform version 25.1.0.1, available from the My HCLSoftware Portal.

Added: Oct 13, 2025, 4:17 AM

Updated: Oct 13, 2025, 4:17 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

HCL Unica Platform Improper Access Control Vulnerability Allowing Exposure of Sensitive Information

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating