CVE-2025-55262 - Vulnerability Analysis
HighCVSS: 8.3Last Updated: March 26, 2026
HCL Aftermarket DPC - SQL Injection
Published: March 26, 2026Updated: March 26, 2026Remote Exploitable
Overview
HCL Aftermarket DPC contains a sql injection caused by unsanitized input in database queries, letting attackers retrieve sensitive information from the database, exploit requires crafted input.
Severity & Score
Severity: High
CVSS Score: 8.3
EPSS Score: 2.7%(Probability of exploitation in next 30 days)
Impact
Attackers can retrieve sensitive database information, potentially leading to data disclosure.
Mitigation
Update to the latest version.
Social Media Activity(1 post)
TheHackerWire
@thehackerwire
š CVE-2025-55262 - High (8.3) HCL Aftermarket DPC is affected by SQL Injection which allows attacker to exploit this vulnerability to retrieve sensitive information from the database. š https://www.thehackerwire.com/vulnerability/CVE-2025-55262/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
View original postRelated Resources
Details
- CVE ID
- CVE-2025-55262
- Severity
- High
- CVSS Score
- 8.3
- Type
- sql_injection
- Status
- confirmed
- EPSS
- 2.7%
- Social Posts
- 1
CWE
- CWE-798
- CWE-89
CVSS Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:H
EPSS Score
2.7%Probability of exploitation in the next 30 days