Internal IP Disclosure in HCL Aftermarket DPC
CVE-2025-55276

3.1LOW

Key Information:

Vendor: HCL Software
Status: Aftermarket Dpc
Vendor: CVE Published:; 26 March 2026

🔔 Create HCL Software Vulnerability Alert

What is CVE-2025-55276?

The Internal IP Disclosure vulnerability in HCL Aftermarket DPC allows unauthorized attackers to gain insights into the organization's network structure. This can potentially lead to reconnaissance attacks, where an attacker can map the internal network, identify key resources, and increase the risk of subsequent attacks. Organizations using affected versions of HCL Aftermarket DPC should prioritize updating to secure their network from potential exploitation.

Affected Version(s)

Aftermarket DPC version 1.0.0

References

https://support.hcl-software.com/csm?id=kb_article&syspar...

CVSS V3.1

Score:

3.1

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 26, 2026
Vulnerability Reserved
Aug 12, 2025

CVE-2025-55276 Data

JSON