Sensitive Data Exposure Vulnerability in HCL iAutomate
CVE-2025-31955

7.6HIGH

Key Information:

Vendor: HCL Software Software
Status: Iautomate
Vendor: CVE Published:; 24 July 2025

🔔 Create HCL Software Software Vulnerability Alert

What is CVE-2025-31955?

HCL iAutomate is susceptible to a sensitive data exposure vulnerability that could permit unauthorized users to access confidential system information. This exposure can compromise the integrity of sensitive data, leading to potential data breaches and unauthorized actions within the application.

Affected Version(s)

iAutomate 6.5.1

References

https://support.hcl-software.com/csm?id=kb_article&syspar...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.6

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 24, 2025
Vulnerability Reserved
Apr 1, 2025