CVE-2025-52608 - CERT CVE

  1. CVE-2025-52608

ID CVE-2025-52608
Sažetak HCL iControl was affected by Missing Cookie Attributes vulnerability. It was observed that the application is missing several critical cookie attributes, including Secure and SameSite. And also path is set to root.
Reference
CVSS
Base: 3.1
Impact: 1.4
Exploitability:1.6
Pristup
VektorSloženostAutentikacija
NETWORK HIGH LOW
Impact
PovjerljivostCjelovitostDostupnost
NONE LOW NONE
CVSS vektor CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N
Zadnje važnije ažuriranje 04-06-2026 - 18:38
Objavljeno 04-06-2026 - 12:16