HCL AION is affected by a vulnerability where auto-complete functionality is enabled for certain input fields
In HCL AION, certain input fields have browser auto-complete enabled, which can cause sensitive data entered by users to be stored locally in their web browser. This means that if a user's device is compromised or shared, this sensitive information could be exposed to unauthorized individuals.
HCL AION is affected by a vulnerability where auto-complete functionality is enabled for certain input fields. This may allow sensitive information to be stored in the browser, potentially leading to unintended exposure under specific conditions.
HCL AION users are at a low risk of sensitive information being exposed if their browser's auto-complete feature stores confidential data locally, which could be accessed by unauthorized parties on a compromised or shared device.
Monitor & Review
Low severity — keep this CVE on your radar and patch during routine maintenance.
What should I do?
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:A/AC:H/PR:L/UI:R/S:C/C:L/I:N/A:N
0
Affected Products
1
References
CVSS:3.1/AV:A/AC:H/PR:L/UI:R/S:C/C:L/I:N/A:N
Exploitability
Impact