216.73.216.133

CVE-2025-52638

· Published 16/03/2026 14:17 · Modified 17/03/2026 11:16

Labels: CVE-2025-52638 2026-03-16CVE-2025-52638CWE-345[email protected]

Essential information

Published
16/03/2026 14:17
Modified
17/03/2026 11:16
Author
Creator
CVSS
5.6 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:H/A:H

CVSS metrics

Description

HCL AION is affected by a vulnerability where generated containers may execute binaries with root-level privileges. Running containers with root privileges may increase the potential security risk, as it grants elevated permissions within the container environment. Aligning container configurations with security best practices requires minimizing privileges and avoiding root-level execution wherever possible.

NVD status

Status
Awaiting Analysis — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
hcl / hcl aion cpe:2.3:a:hcl:hcl_aion:*:*:*:*:*:*:*:*

References