ГлавнаяУязвимости → CVE-2025-31952
7.1высокая

CVE-2025-31952

Описание

HCL iAutomate is affected by an insufficient session expiration. This allows tokens to remain valid indefinitely unless manually revoked, increasing the risk of unauthorized access.

Затрагиваемое ПО
Hcltech Dryice iautomate
CVSS
Балл7.1 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L
Источники
https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0122646