Cross-Origin Resource Sharing Flaw in HCL Aftermarket DPC
CVE-2025-55274
2.6LOW
What is CVE-2025-55274?
The HCL Aftermarket DPC product is susceptible to Cross-Origin Resource Sharing misconfigurations, potentially allowing attackers to access sensitive user information. This vulnerability enables unauthorized access to APIs, leading to possible data manipulation or leakage. Attackers exploiting this flaw could impersonate legitimate users, perform actions on their behalf, and compromise user data confidentiality.
Affected Version(s)
Aftermarket DPC version 1.0.0