Vulnerability in Hcl Software Dfxserver
CVE-2026-35149
HCL DFXServer is affected by an Authentication Bypass vulnerability via server response manipulation. An unauthorized user without valid credentials can exploit this flaw by intercepting and altering the server's authentication responses…
CVSS v3 metric
CVSS v3 base score 8.2 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N.
Affected products
- Hcl Software Dfxserver — versions version 2.5 and below
Weakness classification (CWE)
References
Frequently asked questions
- What is CVE-2026-35149?
- CVE-2026-35149 is a high-severity vulnerability in Hcl Software Dfxserver, classified under Authentication Bypass by Capture-replay. CVSS score: 8.2/10. Published 2026-07-16.
- How severe is CVE-2026-35149?
- High severity. CVSS v3 base score is 8.2 out of 10.