How severe is CVE-2025-52655?

CVE-2025-52655 has a CVSS v3 score of 3.1 (LOW).

CVE-2025-52655

3.1LOW

Inclusion of Functionality from Untrusted Control Sphere vulnerability in HCL MyXalytics. v6.6 allows Loading third-party scripts without integrity checks or validation can allow external code run in

Veröffentlicht: 10/10/2025Aktualisiert: 10/14/2025

Beschreibung

Inclusion of Functionality from Untrusted Control Sphere vulnerability in HCL MyXalytics. v6.6 allows Loading third-party scripts without integrity checks or validation can allow external code run in the application's context, risking data exposure.

KI-AnalyseKI-gestützt

Referenzen

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0124411