CVE-2025-59854

Name of the Vulnerable Software and Affected Versions HCL DFXAnalytics (affected versions not specified)

Description HCL DFXAnalytics uses an outdated X-XSS-Protection header. This insecure security header configuration may allow an attacker to bypass security controls or exploit browser-specific rendering flaws. These protections should instead be managed by a robust Content Security Policy (CSP), which is a security layer that helps detect and mitigate certain types of attacks, including Cross-Site Scripting (XSS).

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.