HCL Aftermarket DPC Improper Input Validation Vulnerability Allowing Code Injection

Vulnerability

A vulnerability exists in HCL Aftermarket DPC due to improper input validation, which enables an attacker to inject executable code. This flaw could be exploited to execute various types of attacks, including Cross-Site Scripting (XSS), SQL Injection, and Command Injection.

Impact

Exploitation of this vulnerability could lead to arbitrary code execution, allowing attackers to perform a range of malicious actions depending on the injected code.

Added: Mar 26, 2026, 1:32 PM

Updated: Mar 26, 2026, 1:32 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.2

remediation

0.0

relevance

4.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.2

remediation

0.0

relevance

4.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

HCL Aftermarket DPC Improper Input Validation Vulnerability Allowing Code Injection

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating