Predictable Identifier Vulnerability in HCL AION by HCL Software

CVE-2025-52649

What is CVE-2025-52649?

HCL AION has been identified with a vulnerability arising from certain identifiers being predictable in nature. This predictability can enable attackers to infer or guess system-generated values, which may lead to limited information disclosure or unintended access in specific scenarios. Such vulnerabilities can compromise the integrity of data and threaten the overall security of the system, highlighting the need for robust identifier generation mechanisms.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References