PT-2026-28286 · Hcl · Hcl Aftermarket Dpc

Published

2026-03-26

Updated

2026-03-29

CVE-2025-55261

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions HCL Aftermarket DPC (affected versions not specified)

Description The application suffers from missing functional level access control, potentially allowing an attacker to escalate privileges and compromise the application. This could lead to the theft and manipulation of data.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284

Related Identifiers

CVE-2025-55261

Affected Products

Hcl Aftermarket Dpc

PT-2026-28286 · Hcl · Hcl Aftermarket Dpc

CVE-2025-55261

Weakness Enumeration

Related Identifiers

Affected Products

References · 4