HCL Aftermarket DPC Admin Session Concurrency Vulnerability Allowing Session Hijacking

Vulnerability

A vulnerability exists in HCL Aftermarket DPC that allows an attacker to hijack or impersonate an admin user by exploiting concurrent admin sessions. This admin session concurrency vulnerability could lead to unauthorized actions being performed on behalf of the admin user.

Impact

Exploitation of this vulnerability could result in an attacker hijacking an admin user's session, allowing them to impersonate the admin and potentially misuse administrative privileges.

Added: Mar 26, 2026, 1:25 PM

Updated: Mar 26, 2026, 1:25 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

5.0

remediation

0.0

relevance

4.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

5.0

remediation

0.0

relevance

4.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

HCL Aftermarket DPC Admin Session Concurrency Vulnerability Allowing Session Hijacking

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating