CVE-2025-31961

Medium

HCL Connections contains a broken access control vulnerability that may allow unauthorized user to update data in certain scenarios.

HCL·CWE-1220·Published 2025-08-15

CVSS

4.6

EPSS

0.00

KEV

Exploits

cve.orgen

132 chars

HCL Connections contains a broken access control vulnerability that may allow unauthorized user to update data in certain scenarios.

NVDen

132 chars

HCL Connections contains a broken access control vulnerability that may allow unauthorized user to update data in certain scenarios.

HCL Connections contiene una vulnerabilidad de control de acceso roto que puede permitir que usuarios no autorizados actualicen datos en ciertos escenarios.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	NVD	4.6	2.1	2.5	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
3.1	Primary	cve.org	3.7	—	—	CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N
3.1	Secondary	NVD	3.7	1.2	2.5	CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N