Medium severity4.3NVD Advisory· Published Jun 4, 2026· Updated Jun 4, 2026
CVE-2025-52606
CVE-2025-52606
Description
HCL iControl was affected by Weak Input Validation vulnerability. This weakness is caused during implementation of an architectural security tactic. Received input that is expected to be of a certain type, but it does not validate or incorrectly validates that the input is actually of the expected type.
Affected products
2Patches
Vulnerability mechanics
References
1- support.hcl-software.com/csmnvdVendor Advisory
News mentions
1- HCL Software: Eight Vulnerabilities Disclosed Across Multiple ProductsVypr Intelligence · Jun 4, 2026