CVE-2025-15619EXPLOITED

hcl · hcl connections

HCL Connections is vulnerable to broken access control

Description

HCL Connections contains a broken access control vulnerability that may allow an unauthorized user to view data in a single specific scenario.

Affected Products

Vendor	Product	Versions
hcl	hcl connections	7.0, 8.0

References

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0130163

Related News (1 articles)

Tier C

VulDB5d ago

CVE-2025-15619 | HCL Connections 7.0/8.0 access control (KB0130163)

→ No new info (linked only)

CVSS 3.13.5 CRITICAL

VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N

CISA KEV❌ No

Actively exploited✅ Yes

CWECWE-284, CWE-319

PublishedJun 23, 2026

Last enriched5d agov2

Trending Score21

Source articles1

Independent1

Info Completeness8/14

Missing: epss, kev, exploit, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

HIGHPRE-CVE

Multiple vulnerabilities in HCL BigFix Compliance (Ruby) allowing code execution, security bypass, data manipulation, information disclosure, and denial of service

Trending: 27

HIGHCVE-2025-59868

HCL Traveler for Microsoft Outlook (HTMO) is susceptible to sensitive data exposure

Trending: 18

HIGHCVE-2023-37524

HCL Traveler for Microsoft Outlook (HTMO) is susceptible to vulnerabilities due to .NET Framework 4.5 being out of service

Trending: 15

MEDIUMCVE-2026-21768

HCL Verse for Android is susceptible to an injection vulnerability

Trending: 8

LOWCVE-2025-62340EXP

HCL iControl was affected by Inadequate Session Timeout vulnerability

Trending: 6

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Jun 23, 2026

Discovered by ZDM

Jun 23, 2026

Actively Exploited

Jun 23, 2026

Updated: severity, activelyExploited

Jun 23, 2026

Version History

Last enriched 5d ago

v2Tier C5d ago

Updated severity to CRITICAL and marked the vulnerability as actively exploited.

severityactivelyExploited

via VulDB

v15d ago

Initial creation