CVE-2025-59851 LOW

CVE-2025-59851: HCL DFXAnalytics is affected by an Insecure Security Header configuration vulnerability

Vendor Hcl
Product DFXAnalytics
Weakness CWE-1395
Published May 6, 2026
Last update May 6, 2026

CVSS base score

3.7/10
Attack vector Network
Attack complexity High
Privileges required None
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

HCL DFXAnalytics is affected by a Using Components with Known Vulnerabilities flaw where the application utilizes unpatched libraries or sub-components, which could allow an attacker to identify and exploit publicly known security vulnerabilities to gain unauthorized access or compromise the application.

Key dates

02Disclosure timeline

May 6, 2026 CVE published
May 6, 2026 Record updated