Broken Access Control in HCL Connections by HCL Technologies
CVE-2025-31961
3.7LOW
What is CVE-2025-31961?
HCL Connections exhibits a broken access control vulnerability that can potentially allow unauthorized users to update sensitive data under specific conditions. This weakness raises significant concerns for data integrity and security, making it critical for organizations to evaluate their current implementations and enforce rigorous access control measures to prevent unauthorized data manipulation. For more information on how to mitigate this issue, visit the official HCL support page.
Affected Version(s)
Connections 8.0