CVE-2025-52648

Medium CVSS: 4.8

HCL AION is affected by a vulnerability where offering images are not digitally signed. Lack of image signing may allow the use of unverified or tampered images, potentially leading to security risks such as integrity compromise or unintended behavior in the system

Vendor

Hcl

Product

Aion

CWE

CWE-347

Yayın Tarihi

2026-03-16 14:17:59

Güncelleme

2026-03-27 17:25:33

Source Identifier

psirt@hcl.com

KEV Date Added

Kategoriler

CWE-347 Aion MEDIUM Hcl 2026

Referanslar

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0129410