hcltech

Top products

The 15 most recently published vulnerabilities affecting hcltech.

• CVE-2026-21825HCL Digital Experience Compose is affected by a reflected cross-site scripting (XSS) vulnerability in the search center6.1Jun 5, 2026
• CVE-2026-21826HCL Digital Experience and HCL Digital Experience Compose could be susceptible to Host header injection6.1Jun 5, 2026
• CVE-2026-21837HCL Digital Experience is affected by an OS command injection vulnerability in the Digital Asset Management API8.8Jun 5, 2026
• CVE-2025-52606HCL iControl was affected by Weak Input Validation vulnerability. .4.3Jun 4, 2026
• CVE-2025-52608HCL iControl was affected by Missing Cookie Attributes vulnerability.3.1Jun 4, 2026
• CVE-2025-52609HCL iControl was affected by Missing Security Headers vulnerability.3.7Jun 4, 2026
• CVE-2025-52611HCL iControl was affected by Unhandled Exception - Stack Trace Disclosure vulnerability3.1Jun 4, 2026
• CVE-2025-52612HCL iControl was affected by Export CSV - CSV Injection vulnerability.7.1Jun 4, 2026
• CVE-2025-31985HCL BigFix Service Management (SM) is affected by a security misconfiguration due to a missing or insecure “X-Content-Type-Options” header3.7May 20, 2026
• CVE-2025-31973HCL BigFix Service Management (SM) is susceptible to a Configuration – 'Insecure Use of Base Image Version'4.0May 20, 2026
• CVE-2025-15634HCL BigFix WebUI is affected by a missing authorization vulnerability4.3May 9, 2026
• CVE-2025-15633HCL BigFix WebUI is affected by an improper authorization vulnerability6.5May 9, 2026
• CVE-2024-30151HCL BigFix Service Management (SM) is susceptible to Broken Access Control Vulnerability8.3May 6, 2026
• CVE-2025-31960HCL BigFix Service Management (SM) is vulnerable to information exposure due to improper error handling within its reporting module5.3May 6, 2026
• CVE-2025-31974HCL BigFix Service Management (SM) is susceptible to a Root File System Not Mounted as Read-Only3.9May 6, 2026