Security Advisory

CVE-2025-55264

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-26 13:04:01

Last updated 2026-03-26 18:35:17

Assigner HCL

State PUBLISHED

Description

HCL Aftermarket DPC is affected by Failure to Invalidate Session on Password Change will allow attacker to access to a session, then they can maintain control over the account despite the password change leading to account takeover.

← Browse all CVEs View on cve.org ↗