This page lists publicly disclosed CVE vulnerabilities affecting hcltech intelliops_event_management (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-0253 | HCL IEM is affected by a cookie attribute not set vulnerability due to inconsistency of certain security-related configurations which could increase exposure to potential vulnerabilities. | [email protected] | 2.0 | 0.15% | 2025-07-24 | 2026-06-17 |
| CVE-2025-0252 | HCL IEM is affected by a password in cleartext vulnerability. Sensitive information is transmitted without adequate protection, potentially exposing it to unauthorized access during transit. | [email protected] | 2.6 | 0.12% | 2025-07-24 | 2026-06-17 |
| CVE-2025-0251 | HCL IEM is affected by a concurrent login vulnerability. The application allows multiple concurrent sessions using the same user credentials, which may introduce security risks. | [email protected] | 2.6 | 0.20% | 2025-07-24 | 2026-06-17 |
| CVE-2025-0250 | HCL IEM is affected by an authorization token sent in cookie vulnerability. A token used for authentication and authorization is being handled in a manner that may increase its exposure to security risks. | [email protected] | 2.2 | 0.17% | 2025-07-24 | 2026-06-17 |
| CVE-2025-0249 | HCL IEM is affected by an improper invalidation of access or JWT token vulnerability. A token was not invalidated which may allow attackers to access sensitive data without authorization. | [email protected] | 3.3 | 0.21% | 2025-07-24 | 2026-06-17 |