CVE-2025-52632 | HCL AION 2.0 missing secure attribute (KB0124444)

October 10, 2025 Yanac

A vulnerability identified as problematic has been detected in HCL AION 2.0. Affected by this issue is some unknown functionality. This manipulation causes sensitive cookie without secure attribute.

The identification of this vulnerability is CVE-2025-52632. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-61863 | Fuji Electric V-SFT up to 6.2.7.0 V-SFT File Parser CSaveData::delete_mem out-of-bounds
CVE-2025-52650 | HCL AION 2.0 Content-Security-Policy Remote Code Execution (KB0124444)