CVE-2025-52608EPSS p1.0%

CVE-2025-52608CVE-2025-52608

hcltech / icontrol

Description

HCL iControl was affected by Missing Cookie Attributes vulnerability. It was observed that the application is missing several critical cookie attributes, including Secure and SameSite. And also path is set to root.

Scoring

CVSS 3.1 ()
VectorCVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N
EPSS0.10% probability of exploitation · percentile 1.0% · 2026-06-19T12:03:05Z
Last modified2026-06-04

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-52609
CVE
CVE-2025-52612
CVE
CVE-2025-52606
CVE
CVE-2025-52628
CVE
CVE-2025-52611
CVE
CVE-2025-0248
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.