HCL Software
Security Scorecard
Score
58F
Total CVEs
7
Patch Rate
14%
1 patched
Avg Response
-
days to patch
Critical Gaps
0
exploitable, no detection
Severity Breakdown
Critical0
High1
Medium6
Low0
Patch Status
Patched1 (14%)
Partial/Workaround1 (14%)
Unpatched5 (71%)
CVEs (8)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-59870 | HCL MyXalytics v6.7 JWT Secret Rotation Vulnerability | High | 7.4 | - | Patched |
| CVE-2025-62327 | HCL DevOps Deploy Vulnerability | Medium | 4.9 | 0d | Unpatched |
| CVE-2024-42197 | HCL Workload Scheduler Token Forgery | Medium | 5.5 | - | Workaround |
| CVE-2025-52622 | - | Medium | 5.4 | 12d | Unpatched |
| CVE-2025-62346 | - | Medium | 6.8 | 25d | Unpatched |
| CVE-2025-52647 | - | Medium | 6.1 | 71d | Unpatched |
| CVE-2025-52632 | - | Medium | 6.5 | 71d | Unpatched |
| CVE-2025-62329 | HCL DevOps Deploy / HCL Launch IP Binding Reuse Vulnerability | N/A | - | 22d | Unpatched |