Denial of Service Vulnerability in HCL Connections Docs
CVE-2025-31987

4.8MEDIUM

Key Information:

Vendor: HCL Software Software
Status: Connections Docs
Vendor: CVE Published:; 14 August 2025

🔔 Create HCL Software Software Vulnerability Alert

What is CVE-2025-31987?

HCL Connections Docs contains a vulnerability that improperly validates uploaded documents, potentially leading to denial of service through resource exhaustion. Such an issue could impede normal operations and compromise system availability, thereby necessitating prompt remediation to safeguard against service disruptions.

Affected Version(s)

Connections Docs 2.0.2

References

https://support.hcl-software.com/csm?id=kb_article&syspar...

CVSS V3.1

Score:

4.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 14, 2025
Vulnerability Reserved
Apr 1, 2025

Credit

Christoph Stöttner of Vegard IT GmbH