CVE-2025-52655

Publication date

2025-10-10 08:55:40

Family

HCL

State

PUBLISHED

Description

Inclusion of Functionality from Untrusted Control Sphere vulnerability in HCL MyXalytics. v6.6 allows Loading third-party scripts without integrity checks or validation can allow external code run in the applications context, risking data exposure.