CVE-2025-62317

Low

HCL AION is affected by a vulnerability where sensitive information may be included in URL parameters. Passing sensitive data in URLs may…

HCL·CWE-598·Published 2026-05-14

CVSS

2.6

EPSS

0.00

KEV

Exploits

cve.orgen

286 chars

HCL AION is affected by a vulnerability where sensitive information may be included in URL parameters. Passing sensitive data in URLs may expose it through browser history, logs, or intermediary systems, potentially leading to unintended information disclosure under certain conditions.

NVDen

286 chars

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	2.6	—	—	CVSS:3.1/AV:A/AC:H/PR:L/UI:R/S:C/C:L/I:N/A:N
3.1	Secondary	NVD	2.6	0.9	1.4	CVSS:3.1/AV:A/AC:H/PR:L/UI:R/S:C/C:L/I:N/A:N