How severe is CVE-2025-52655?

CVE-2025-52655 has a CVSS v3 score of 3.1 (LOW).

CVE-2025-52655

3.1LOW

Inclusion of Functionality from Untrusted Control Sphere vulnerability in HCL MyXalytics. v6.6 allows Loading third-party scripts without integrity checks or validation can allow external code run in

Publicado: 10/10/2025Actualizado: 10/14/2025

Descripción

Inclusion of Functionality from Untrusted Control Sphere vulnerability in HCL MyXalytics. v6.6 allows Loading third-party scripts without integrity checks or validation can allow external code run in the application's context, risking data exposure.

Análisis IAImpulsado por IA

Referencias

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0124411