What is CVE-2025-62345?

CVE-2025-62345 is a low-severity vulnerability in Hcl Bigfix Runbookai, classified under Insufficiently Protected Credentials. CVSS score: 2.7/10. Published 2026-05-06.

How severe is CVE-2025-62345?

Low severity. CVSS v3 base score is 2.7 out of 10.

Vulnerability in Hcl Bigfix Runbookai

CVE-2025-62345

HCL BigFix RunBookAI is affected by a Continued availability of Less-Secure “Input Text” Vulnerability . A component contains a security weakness in its input handling implementation, increasing the risk of misconfiguration and operational…

EPSS: 0.000 (9.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 2.7 (Low). Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N.

Affected products

Hcl Bigfix Runbookai — versions 11.2

Weakness classification (CWE)

CWE-522 — Insufficiently Protected Credentials

References

psirt@hcl.com

Frequently asked questions

What is CVE-2025-62345?: CVE-2025-62345 is a low-severity vulnerability in Hcl Bigfix Runbookai, classified under Insufficiently Protected Credentials. CVSS score: 2.7/10. Published 2026-05-06.
How severe is CVE-2025-62345?: Low severity. CVSS v3 base score is 2.7 out of 10.