CVE-2025-0273

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Mar 27, 2025

Updated: Apr 11, 2025

CWE ID 532

Summary

CVE-2025-0273 is a vulnerability affecting HCL DevOps Deploy and HCL Launch. The issue lies in the logging of authentication tokens, which are considered sensitive information. These tokens are stored in log files and can be accessed by a local user, potentially leading to unauthorized access or other malicious activities. This vulnerability highlights the importance of proper log file management and access control to protect sensitive information. Organizations using HCL DevOps Deploy or HCL Launch are advised to address this issue promptly to mitigate potential risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Hcltechsw Hcl Launch

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/2PDotJ
https://www.cve.org/CVERecord?id=CVE-2025-0273
https://nvd.nist.gov/vuln/detail/CVE-2025-0273

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners

CVE-2025-0273

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations