CVE-2025-52603 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	3.5 LOW	NETWORK	LOW	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
HCL	CNA	3.5 LOW	NETWORK	LOW	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: Unknown

Affected Products (NVD)

Vendor	Product	Version
hcltech	connections	7.0
hcltech	connections	8.0
hcltech	connections	8.0:cumulative_release1
hcltech	connections	8.0:cumulative_release10
hcltech	connections	8.0:cumulative_release2
hcltech	connections	8.0:cumulative_release3
hcltech	connections	8.0:cumulative_release4
hcltech	connections	8.0:cumulative_release5
hcltech	connections	8.0:cumulative_release6
hcltech	connections	8.0:cumulative_release7
hcltech	connections	8.0:cumulative_release8
hcltech	connections	8.0:cumulative_release9

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-213 - Exposure of Sensitive Information Due to Incompatible Policies
The product's intended functionality exposes information to certain actors in accordance with the developer's security policy, but this information is regarded as sensitive according to the intended security policies of other stakeholders such as the product's administrator, users, or others whose information is being processed.

References

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0124242