Insufficient Transport Layer Protection in HCL DFXAnalytics
CVE-2025-59852

3.7LOW

Key Information:

Vendor: HCL Software
Status: Dfxanalytics
Vendor: CVE Published:; 6 May 2026

🔔 Create HCL Software Vulnerability Alert

What is CVE-2025-59852?

HCL DFXAnalytics exposes sensitive data over the network without adequate encryption, creating potential opportunities for attackers to intercept and manipulate confidential information. This vulnerability raises serious implications for data confidentiality, integrity, and authentication, highlighting the need for a robust encryption strategy to safeguard sensitive communications.

Affected Version(s)

DFXAnalytics 3.1 and below

References

https://support.hcl-software.com/csm?id=kb_article&syspar...

CVSS V3.1

Score:

3.7

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 6, 2026
Vulnerability Reserved
Sep 22, 2025

CVE-2025-59852 Data

JSON