{"cve_id":"CVE-2025-55270","summary":"HCL Aftermarket DPC is affected by Improper Input Validation which allows an attacker to inject executable code and can carry out attacks such as XSS, SQL Injection, Command Injection etc.","cvss":3.5,"cvss_version":3.0,"cvss_v2":null,"cvss_v3":3.5,"epss":0.00074,"ranking_epss":0.22512,"kev":false,"propose_action":null,"ransomware_campaign":null,"references":["https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0129793"],"published_time":"2026-03-26T13:16:26","cpes":["cpe:2.3:a:hcltech:aftermarket_cloud:1.0.0"]}