Cookie Attribute Vulnerability in HCL IEM Product
CVE-2025-0253

2LOW

Key Information:

Vendor: HCL Software Software
Status: Iem
Vendor: CVE Published:; 25 July 2025

🔔 Create HCL Software Software Vulnerability Alert

What is CVE-2025-0253?

HCL IEM is affected by a vulnerability that arises from improperly configured cookie attributes. Inconsistent security-related configurations may lead to an increased risk of exposure to potential threats, making it essential for users to review and remediate security settings to safeguard against exploitation.

Affected Version(s)

IEM 1.2

References

https://support.hcl-software.com/csm?id=kb_article&syspar...

CVSS V3.1

Score:

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 25, 2025