CSRF Vulnerability in HCL Glovius Cloud
CVE-2025-62346
6.8MEDIUM
What is CVE-2025-62346?
A Cross-Site Request Forgery (CSRF) vulnerability was discovered in HCL Glovius Cloud, allowing attackers to exploit a user's authenticated session. This occurs when a malicious entity tricks the user's web browser into making unauthorized requests to a trusted site, potentially leading to significant security concerns if exploited. Users of HCL Glovius Cloud are advised to implement protective measures to safeguard against this vulnerability.
Affected Version(s)
Glovius Cloud <=S05.25
References
CVSS V3.1
Score:
6.8
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved
Credit
Md. Asif Hossain