What is CVE-2025-55261?

CVE-2025-55261 is a high-severity vulnerability in Hcl Aftermarket Dpc, classified under Improper Access Control. CVSS score: 8.1/10. Published 2026-03-26.

How severe is CVE-2025-55261?

High severity. CVSS v3 base score is 8.1 out of 10.

Vulnerability in Hcl Aftermarket Dpc

CVE-2025-55261

HCL Aftermarket DPC is affected by Missing Functional Level Access Control which will allow attacker to escalate his privileges and may compromise the application and may steal and manipulate the data.

EPSS: 0.000 (5.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.1 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H.

Affected products

Hcl Aftermarket Dpc — versions version 1.0.0

Weakness classification (CWE)

CWE-284 — Improper Access Control

References

support.hcl-software.com/csm

Frequently asked questions

What is CVE-2025-55261?: CVE-2025-55261 is a high-severity vulnerability in Hcl Aftermarket Dpc, classified under Improper Access Control. CVSS score: 8.1/10. Published 2026-03-26.
How severe is CVE-2025-55261?: High severity. CVSS v3 base score is 8.1 out of 10.