HCL AION Cacheable HTTP Response Vulnerability Allowing Unintended Storage of Sensitive Content

Vulnerability

A vulnerability exists in HCL AION version 2, related to cacheable HTTP responses. This issue may cause the unintentional storage of sensitive or dynamic content, which could lead to unauthorized access or information disclosure.

Impact

Exploitation of this vulnerability could result in unauthorized access to stored sensitive information or dynamic content.

Added: Jan 19, 2026, 6:39 PM

Updated: Jan 19, 2026, 6:39 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

3.0

remediation

0.0

relevance

2.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

3.0

remediation

0.0

relevance

2.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

HCL AION Cacheable HTTP Response Vulnerability Allowing Unintended Storage of Sensitive Content

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating