Where
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how hcl compares to other vendors in security performance

View Risk Score →

Software

hcl aion
36
hcltech aion
28
hcltech aftermarket cloud
17
hcl myxalytics
16
hcltech bigfix service management
16
hcl dryice myxalytics
14
hcl aftermarket dpc
13
hcl bigfix service management
12
hcl devops deploy
12
hcl launch
12
hcl leap
10
hcl domino volt
8
hcl bigfix platform
7
hcltech bigfix platform
7
hcl domino leap
6
hcl dfxanalytics
5
hcltech dfxanalytics
5
hcltechsw hcl devops deploy
5
hcl dryice aex
4
hcl hcl aftermarket dpc
4
hcl traveler
4
hcl bigfix ivr
3
hcl bigfix web reports
3
hcl dryice optibot reset station
3
hcl hcl aion
3
hcl nomad
3
hcl sx
3
hcltech bigfix insights for vulnerability remediation
3
hcltechsw hcl launch
3
hcl bigfix compliance
2
hcl bigfix runbookai
2
hcl bigfix service management (sm)
2
hcl bigfix webui
2
hcl devops velocity
2
hcl hcl connections
2
hcl hcl traveler
2
hcltech bigfix webui api
2
hcltech bigfix webui application administration
2
hcltech bigfix webui cmep
2
hcltech bigfix webui common
2
hcltech bigfix webui content app
2
hcltech bigfix webui custom
2
hcltech bigfix webui data sync
2
hcltech bigfix webui extensions
2
hcltech bigfix webui framework
2
hcltech bigfix webui insights
2
hcltech bigfix webui ivr
2
hcltech bigfix webui mdm
2
hcltech bigfix webui patch
2
hcltech bigfix webui patch policies
2

HCL DominoIQHCL DominoIQ is affected by broken access control

Risk 38
Severity
6.5
First published (updated )
CVE-2026-21836

HCL BigFix Service ManagementHCL BigFix Service Management (SM) is affected by a security misconfiguration due to a missing or insecure “X-Content-Type-Options” header

Risk 40
Severity
6.5
First published (updated )
CVE-2025-31985

HCL BigFix Service ManagementHCL BigFix Service Management (SM) is susceptible to a Configuration – 'Insecure Use of Base Image Version'

Risk 86
Severity
9.8
First published (updated )
CVE-2025-31973

HCL HCL ConnectionsHCL Connections is vulnerable to broken access control

Risk 30
Severity
4.6
First published (updated )
CVE-2026-21789

HCL AIONHCL AION is affected by a vulnerability where certain operations may trigger out-of-band interactions

Risk 38
Severity
5.1
First published (updated )
CVE-2025-62305
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

HCL AIONHCL AION is affected by a vulnerability where sensitive information may be included in URL parameters.

Risk 15
Severity
2.6
First published (updated )
CVE-2025-62317

HCL HCL AIONHCL AION is affected by a vulnerability where sensitive backend infrastructure details may be exposed

Risk 38
Severity
5.1
First published (updated )
CVE-2025-62308

HCL AIONHCL AION is affected by a vulnerability where auto-complete functionality is enabled for certain input fields.

Risk 15
Severity
2.6
First published (updated )
CVE-2025-62309

HCL AIONHCL AION is affected by a vulnerability where basic authorization tokens are used for authentication

Risk 16
Severity
3
First published (updated )
CVE-2025-62312

HCL AIONHCL AION is affected by a vulnerability where certain security-related HTTP response headers are not properly configured

Risk 13
Severity
2.3
First published (updated )
CVE-2025-62316
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

HCL HCL AIONHCL AION is affected by a vulnerability where adequate protections against brute-force attempts are not enforced.

Risk 34
Severity
5.4
First published (updated )
CVE-2025-62313

HCL AIONHCL AION is affected by a vulnerability where backend service details may be transmitted over insecure HTTP channels.

Risk 33
Severity
4.3
First published (updated )
CVE-2025-62311

HCL HCL AIONHCL AION is affected by a vulnerability where encryption is not enforced for certain data transmissions or operations

Risk 40
Severity
5.4
First published (updated )
CVE-2025-62310

HCL HCL BigFix SCM ReportingHCL BigFix SCM Reporting is affected by vulnerabilities in jQuery

Risk 71
Severity
8.3
First published (updated )
CVE-2026-21821

HCL BigFix WebUIHCL BigFix WebUI is affected by a missing authorization vulnerability

Risk 26
Severity
5.3
First published (updated )
CVE-2025-15634
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

HCL BigFix WebUIHCL BigFix WebUI is affected by an improper authorization vulnerability

Risk 38
Severity
5.3
First published (updated )
CVE-2025-15633

HCL BigFix Service ManagementHCL BigFix Service Management (SM) is susceptible to Broken Access Control Vulnerability

Risk 69
Severity
8.3
First published (updated )
CVE-2024-30151

HCL BigFix Service ManagementHCL BigFix Service Management (SM) is vulnerable to information exposure due to improper error handling within its reporting module

Risk 27
Severity
5.3
First published (updated )
CVE-2025-31960

HCL BigFix Service Management (SM)HCL BigFix Service Management (SM) is susceptible to a Root File System Not Mounted as Read-Only

Risk 66
Severity
7.2
First published (updated )
CVE-2025-31974

HCL HCL BigFix Service ManagementHCL BigFix Service Management (SM) is affected by an Information Disclosure – Server Banner issue was identified.

Risk 27
Severity
5.3
First published (updated )
CVE-2025-31975
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

HCL BigFix Service Management (SM)HCL BigFix Service Management (SM) is affected by use of a vulnerable component

Risk 79
Severity
8.8
First published (updated )
CVE-2025-52613

HCL BigFix Service ManagementHCL BigFix Service Management (SM) is vulnerable to insufficiently protected credentials

Risk 43
Severity
7.5
First published (updated )
CVE-2025-31976

HCL BigFix Service ManagementHCL BigFix Service Management (SM) does not adequately sanitize or safely render

Risk 30
Severity
4.6
First published (updated )
CVE-2025-31978

HCL BigFix Service ManagementHCL BigFix Service Management (SM) application fails to strip EXIF metadata from uploaded images.

Risk 19
Severity
3.5
First published (updated )
CVE-2025-31959

HCL BigFix Service ManagementHCL BigFix Service Management (SM) had directories that were not linked or publicly visible but could be accessed directl

Risk 38
Severity
6.5
First published (updated )
CVE-2025-31982
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

HCL BigFix Service ManagementHCL BigFix Service Management (SM) is affected by a security misconfiguration due to a missing or insecure “X-Content-Type-Options” header

Risk 34
Severity
5.4
First published (updated )
CVE-2025-31984

HCL BigFix Service ManagementHCL BigFix Service Management (SM) is affected by a security misconfiguration vulnerability due to CSP header

Risk 30
Severity
4.6
First published (updated )
CVE-2025-31983

HCL BigFix Service ManagementHCL BigFix Service Management (SM) is affected by a Cross‑Site Request Forgery (CSRF) vulnerability.

Risk 33
Severity
5.7
First published (updated )
CVE-2025-31957

HCL BigFix RunBookAIHCL BigFix RunBookAI is affected by a Continued availability of Less-Secure “Input Text” Vulnerability

Risk 16
Severity
2.7
First published (updated )
CVE-2025-62345

HCL BigFix RunBookAIHCL BigFix RunBookAI is affected by a Unvalidated Command Input / Potential Command Smuggling vulnerability

Risk 79
Severity
8.8
First published (updated )
CVE-2025-31951
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203