CVE-2025-52633

Name of the Vulnerable Software and Affected Versions HCL AION version 2.0

Description HCL AION is susceptible to a security issue involving the storage of sensitive session data in persistent cookies. This practice can elevate the risk of unauthorized access if these cookies are intercepted or compromised. The issue may lead to potential unauthorized access to user accounts and sensitive information.

Recommendations Ensure sensitive session data is not stored in persistent cookies. Implement secure session management practices to protect against unauthorized access.