Lucene search
K

111 matches found

CNVD
CNVD
added 2026/03/31 12:0 a.m.2 views

Unspecified Vulnerability in HCL Aftermarket DPC (CNVD-2026-15835)

HCL Aftermarket DPC is a digital spare parts and aftermarket management platform for HCL India. HCL Aftermarket DPC suffers from a security vulnerability that can be exploited by an attacker to maintain control of an account after accessing a session, despite a password change, leading to an...

5.5CVSS5.9AI score0.00118EPSS
Exploits0
CNVD
CNVD
added 2026/03/31 12:0 a.m.2 views

HCL Aftermarket DPC Input Validation Error Vulnerability

HCL Aftermarket DPC is a digital spare parts and aftermarket management platform for HCL India. HCL Aftermarket DPC suffers from an input validation error vulnerability that can be exploited by an attacker to inject executable code and perform cross-site scripting, SQL injection, command injectio...

9.8CVSS5.9AI score0.00997EPSS
Exploits0
CNVD
CNVD
added 2026/03/31 12:0 a.m.2 views

Unspecified Vulnerability in HCL Aftermarket DPC (CNVD-2026-15837)

HCL Aftermarket DPC is a digital spare parts and aftermarket management platform for HCL India. A security vulnerability exists in HCL Aftermarket DPC, which can be exploited by an attacker to execute arbitrary commands or inject harmful content based on the way the web application handles split...

8.8CVSS6.1AI score0.00318EPSS
Exploits0
CNVD
CNVD
added 2026/03/31 12:0 a.m.2 views

HCL Aftermarket DPC Session Fixation Vulnerability

HCL Aftermarket DPC is a digital spare parts and aftermarket management platform for HCL India. HCL Aftermarket DPC suffers from a session fixation vulnerability that can be exploited by an attacker to take over a user's session and conduct unauthorized transactions...

6.5CVSS5.9AI score0.00251EPSS
Exploits0
CNVD
CNVD
added 2026/03/31 12:0 a.m.2 views

Unspecified Vulnerability in HCL Aftermarket DPC (CNVD-2026-15830)

HCL Aftermarket DPC is a digital spare parts and aftermarket management platform for HCL India. HCL Aftermarket DPC suffers from a security vulnerability that can be exploited by an attacker to obtain system software and version details to carry out software-specific attacks...

5.3CVSS5.9AI score0.00225EPSS
Exploits0
CNVD
CNVD
added 2026/03/31 12:0 a.m.6 views

Unspecified vulnerability in HCL Aftermarket DPC (CNVD-2026-15829)

HCL Aftermarket DPC is a digital spare parts and aftermarket management platform for HCL India. HCL Aftermarket DPC suffers from a security vulnerability that can be exploited by attackers to more easily guess weak passwords or gain unauthorized access to user accounts using brute force technique...

9.8CVSS5.9AI score0.00242EPSS
Exploits0
CNVD
CNVD
added 2026/03/31 12:0 a.m.3 views

Unspecified Vulnerability in HCL Aftermarket DPC

HCL Aftermarket DPC is a digital spare parts and aftermarket management platform for HCL India. HCL Aftermarket DPC has a security vulnerability that can be exploited by an attacker to read sensitive files on the system and use them for further attacks...

7.5CVSS5.9AI score0.0032EPSS
Exploits0
CNVD
CNVD
added 2026/03/31 12:0 a.m.2 views

Unspecified Vulnerability in HCL Aftermarket DPC (CNVD-2026-15828)

HCL Aftermarket DPC is a digital spare parts and aftermarket management platform for HCL India. HCL Aftermarket DPC has a security vulnerability that can be exploited by an attacker to get a clearer picture of the organization's network layout...

5.3CVSS5.9AI score0.00202EPSS
Exploits0
CNVD
CNVD
added 2026/03/31 12:0 a.m.4 views

HCL Aftermarket DPC File Upload Vulnerability

HCL Aftermarket DPC is a digital spare parts and aftermarket management platform for HCL India. HCL Aftermarket DPC suffers from a file upload vulnerability, which stems from the application not strictly verifying or filtering user uploaded files, and can be exploited by an attacker to upload and...

9.8CVSS6AI score0.00295EPSS
Exploits0
CNVD
CNVD
added 2026/03/31 12:0 a.m.2 views

Unspecified Vulnerability in HCL Aftermarket DPC (CNVD-2026-15833)

HCL Aftermarket DPC is a digital spare parts and aftermarket management platform for HCL India. HCL Aftermarket DPC has a security vulnerability that can be exploited by attackers to compromise the application using vulnerabilities available on the Internet...

6.5CVSS5.9AI score0.00175EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/03/27 5:9 p.m.6 views

CVE-2025-55275

HCL Aftermarket DPC is affected by Admin Session Concurrency vulnerability using which an attacker can exploit concurrent sessions to hijack or impersonate an admin user...

8.1CVSS5.9AI score0.00218EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/27 5:9 p.m.7 views

CVE-2025-55276

HCL Aftermarket DPC is affected by Internal IP Disclosure vulnerability will give attackers a clearer map of the organization’s network layout...

5.3CVSS5.9AI score0.00202EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/27 5:9 p.m.8 views

CVE-2025-55270

HCL Aftermarket DPC is affected by Improper Input Validation which allows an attacker to inject executable code and can carry out attacks such as XSS, SQL Injection, Command Injection etc...

9.8CVSS6AI score0.00997EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/27 5:9 p.m.7 views

CVE-2025-55274

HCL Aftermarket DPC is affected by Cross-Origin Resource Sharing vulnerability. CORS misconfigurations includes the exposure of sensitive user information to attackers, unauthorized access to APIs, and possible data manipulation or leakage. If an attacker to exploit CORS misconfiguration, they...

4.3CVSS5.8AI score0.0018EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/27 5:9 p.m.7 views

CVE-2025-55271

HCL Aftermarket DPC is affected by HTTP Response Splitting vulnerability where in depending on how the web application handles the split response, an attacker may be able to execute arbitrary commands or inject harmful content into the response...

8.8CVSS6.1AI score0.00318EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/27 5:9 p.m.7 views

CVE-2025-55273

HCL Aftermarket DPC is affected by Cross Domain Script Include vulnerability where an attacker using external scripts can tamper with the DOM, altering the content or behavior of the application. Malicious scripts can steal cookies or session tokens, leading to session hijacking...

4.3CVSS5.9AI score0.00231EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/27 5:9 p.m.5 views

CVE-2025-55266

HCL Aftermarket DPC is affected by Session Fixation which allows attacker to takeover the user's session and use it carry out unauthorized transaction behalf of the user...

6.5CVSS5.9AI score0.00251EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/27 5:9 p.m.8 views

CVE-2025-55268

HCL Aftermarket DPC is affected by Spamming Vulnerability which can allow the actor to excessive spamming can consume server bandwidth and processing resources which may lead to Denial of Service...

5.3CVSS5.9AI score0.0027EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/27 5:9 p.m.10 views

CVE-2025-55269

HCL Aftermarket DPC is affected by Weak Password Policy vulnerability, which makes it easier for attackers to guess weak passwords or use brute-force techniques to gain unauthorized access to user accounts...

9.8CVSS5.9AI score0.00242EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/27 5:9 p.m.8 views

CVE-2025-55267

HCL Aftermarket DPC is affected by Unrestricted File Upload vulnerability, allows attacker to upload and execute malicious scripts, gaining full control over the server...

9.8CVSS6AI score0.00295EPSS
Exploits0References1
Rows per page
Query Builder