CNNVD-202602-311 Information
Feb 03, 2026
cve
CNNVD ID
CNNVD-202602-311
Related CVE
- CNNVD Published: 2026-02-03
Description (Chinese)
HCL AION是印度HCL公司的一款AI生命周期管理平台。 HCL AION 2.0版本存在安全漏洞,该漏洞源于在持久性Cookie中存储敏感会话数据,可能导致未经授权的访问。
Description (English)
HCL AION is an AI life-cycle management platform for HCL India. There is a security loophole in HCL AION 2.0, which stems from the storage of sensitive session data in a persistent Cookie and may lead to unauthorized access.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
HCL
Published
2026-02-03
Last Modified
2026-02-24
References
https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0127972 https://access.redhat.com/security/cve/cve-2025-52633
Patch
https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0127972
Share on: