Browse all 70 CVE security advisories affecting HCL. AI-powered Chinese analysis, POCs, and references for each vulnerability.
HCL Technologies operates as a global information technology services provider, primarily focusing on software engineering, business process services, and infrastructure management. With fifty-seven recorded Common Vulnerabilities and Exposures (CVEs), the organization’s security posture reflects risks inherent in its extensive software portfolio and enterprise solutions. Historically, identified flaws frequently involve remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from third-party dependencies or configuration errors within its Domino and Notes platforms. These issues highlight challenges in maintaining secure codebases across complex, legacy-integrated systems. While no catastrophic public breaches have been widely attributed directly to these specific CVEs, the volume of disclosures underscores the necessity for rigorous patch management and continuous vulnerability assessment. The company continues to address these technical debt issues through regular security updates and enhanced development lifecycle protocols to mitigate exposure in its diverse client environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-52656 | HCL MyXalytics product is affected by Mass Assignment vulnerability — HCL MyXalyticsCWE-915 | 7.6 | High | 2025-10-03 |
| CVE-2025-52653 | Cross Site Scripting vulnerability in the web application — HCL MyXalyticsCWE-79 | 7.6 | High | 2025-10-03 |
| CVE-2020-14230 | HCL Technologies Domino 输入验证错误漏洞 — HCL Domino | 7.5 | - | 2020-11-21 |
| CVE-2020-14258 | HCL Software HCL Notes 输入验证错误漏洞 — HCL Notes | 7.5 | - | 2020-11-21 |
| CVE-2020-14234 | HCL Technologies Domino 输入验证错误漏洞 — HCL Domino | 7.5 | - | 2020-11-21 |
| CVE-2020-4104 | HCL Technologies BigFix Platform BigFix WebUI 跨站脚本漏洞 — HCL BigFix WebUI | 5.4 | - | 2020-07-17 |
| CVE-2020-4089 | HCL Technologies Notes 信息泄露漏洞 — HCL Notes | 6.5 | - | 2020-06-26 |
| CVE-2019-4209 | HCL Technologies Connections 输入验证错误漏洞 — HCL Connections | 6.1 | - | 2020-05-01 |
| CVE-2019-4388 | HCL Technologies AppScan Source 跨站脚本漏洞 — AppScan Source | 5.4 | - | 2019-12-18 |
| CVE-2019-4409 | HCL Traveler 跨站脚本漏洞 — HCL Traveler | 6.1 | - | 2019-10-18 |
This page lists every published CVE security advisory associated with HCL. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.