CVE-2025-62316
âšī¸ lowSummary
HCL AION is affected by a vulnerability where certain security-related HTTP response headers are not properly configured. Absence of these headers may reduce the effectiveness of browser-based security controls and could expose the application to limited security risks under specific conditions.
CVSS Score
2.3
Low
EPSS Score
0.0
Exploit Probability
Published Date
2026-05-14
First Seen: 2026-05-17
đ Relative Risk Intelligence
This CVE is Lower Risk - more severe than 0.9% of all 327,350 vulnerabilities in our database.
#324,250
Below average severity
Severity Percentile
đ¯ CISA SSVC Assessment Updated: May 14, 2026
đ Exploitation Status
None
No known exploits
âī¸ Automatable
NO
Requires human interaction
đĨ Technical Impact
Partial
Limited system impact
SSVC data provided by
CISA
Last Modified
2026-05-14
Source
NVD đ
CVSS Vector 3.1
CVSS:3.1/AV:A/AC:H/PR:L/UI:R/S:U/C:L/I:N/A:N
CWE IDs (Weakness Types)