CVE-2025-52616

MEDIUM

HCL Unica 12.1.10 - Info Disclosure

Title source: llm

Description

HCL Unica 12.1.10 can expose sensitive system information. An attacker could use this information to form an attack plan by leveraging known vulnerabilities in the application.

References (1)

Core 1

Core References

Vendor Advisory

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0124230

Scores

CVSS v3 5.3

EPSS 0.0024

EPSS Percentile 14.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-497

Status published

Products (1)

hcltech/unica 12.1.10

Published Oct 12, 2025

Tracked Since Feb 18, 2026