← Back
2026-05-06 10:26CVE-2025-59853HCL
PUBLISHED5.2CWE-209

HCL DFXAnalytics is affected by an Improper Error Handling vulnerability

HCL DFXAnalytics is affected by an Improper Error Handling vulnerability where the application exposes detailed stack traces in responses, which could allow an attacker to gain insights into the application's internal structure, code logic, and environment configurations.

Problem type

Affected products

HCL

DFXAnalytics

3.1 and below - AFFECTED

References

support.hcl-software.com

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0130569

JSON source

https://cveawg.mitre.org/api/cve/CVE-2025-59853
Click to expand
{
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "cveMetadata": {
    "cveId": "CVE-2025-59853",
    "assignerOrgId": "1e47fe04-f25f-42fa-b674-36de2c5e3cfc",
    "assignerShortName": "HCL",
    "dateUpdated": "2026-05-06T10:26:25.727Z",
    "dateReserved": "2025-09-22T14:59:58.052Z",
    "datePublished": "2026-05-06T10:26:25.727Z",
    "state": "PUBLISHED"
  },
  "containers": {
    "cna": {
      "providerMetadata": {
        "orgId": "1e47fe04-f25f-42fa-b674-36de2c5e3cfc",
        "shortName": "HCL",
        "dateUpdated": "2026-05-06T10:26:25.727Z"
      },
      "datePublic": "2026-05-06T14:30:00.000Z",
      "title": "HCL DFXAnalytics is affected by an Improper Error Handling vulnerability",
      "descriptions": [
        {
          "lang": "en",
          "value": "HCL DFXAnalytics is affected by an Improper Error Handling vulnerability where the application exposes detailed stack traces in responses, which could allow an attacker to gain insights into the application's internal structure, code logic, and environment configurations.",
          "supportingMedia": [
            {
              "type": "text/html",
              "base64": false,
              "value": "HCL DFXAnalytics is affected by an Improper Error Handling vulnerability where the application exposes detailed stack traces in responses, which could allow an attacker to gain insights into the application's internal structure, code logic, and environment configurations."
            }
          ]
        }
      ],
      "affected": [
        {
          "vendor": "HCL",
          "product": "DFXAnalytics",
          "defaultStatus": "unaffected",
          "versions": [
            {
              "version": "3.1 and below",
              "status": "affected"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "lang": "en",
              "description": "CWE-209: Generation of Error Message Containing Sensitive Information",
              "cweId": "CWE-209",
              "type": "CWE"
            }
          ]
        }
      ],
      "references": [
        {
          "url": "https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0130569"
        }
      ],
      "metrics": [
        {
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ],
          "cvssV3_1": {
            "version": "3.1",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "attackVector": "NETWORK",
            "attackComplexity": "HIGH",
            "privilegesRequired": "LOW",
            "userInteraction": "NONE",
            "scope": "UNCHANGED",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 3.1,
            "baseSeverity": "LOW"
          }
        }
      ]
    }
  }
}