What is CVE-2025-59872?

CVE-2025-59872 is a medium-severity vulnerability in Hcl Software Zie, classified under Generation of Error Message Containing Sensitive Information. CVSS score: 4.3/10. Published 2026-06-17.

How severe is CVE-2025-59872?

Medium severity. CVSS v3 base score is 4.3 out of 10.

Information disclosure in Hcl Software Zie

CVE-2025-59872

HCL ZIE for Web is affetced by an Unrestricted File Upload vulnerability, If the server is configured to execute code, then it may be possible to obtain command execution on the server by uploading a file known as a web shell, which allows…

CVSS v3 metric

CVSS v3 base score 4.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N.

Affected products

Hcl Software Zie — versions 16.0

Weakness classification (CWE)

CWE-209 — Generation of Error Message Containing Sensitive Information

References

psirt@hcl.com

Frequently asked questions

What is CVE-2025-59872?: CVE-2025-59872 is a medium-severity vulnerability in Hcl Software Zie, classified under Generation of Error Message Containing Sensitive Information. CVSS score: 4.3/10. Published 2026-06-17.
How severe is CVE-2025-59872?: Medium severity. CVSS v3 base score is 4.3 out of 10.