CVE-2025-31992

Medium CVSS: 4.6

HCL Unica MaxAI Assistant is susceptible to a HTML injection vulnerability. An attacker could insert special characters that are processed client-side in the context of the user's session.

Vendor

Product

CWE

CWE-80

Yayın Tarihi

2025-10-12 06:15:47

Güncelleme

2025-10-14 19:36:59

Source Identifier

psirt@hcl.com

KEV Date Added

Kategoriler

CWE-80 MEDIUM 2025

Referanslar

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0124424