Low severity3.1NVD Advisory· Published Jun 4, 2026· Updated Jun 4, 2026

CVE-2025-52611

Description

HCL iControl v4.0.0 was affected by Unhandled Exception - Stack Trace Disclosure vulnerability. The error occurs due to an undefined property being accessed in the application's JavaScript code. Specifically, the code attempts to read the property dashboard key from an object that is undefined. This issue likely stems from one of the following: A missing or improperly initialized object.

Affected products

HCL Software/iControlllm-create
Range: 4.0.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.hcl-software.com/csmnvd

News mentions

HCL Software: Eight Vulnerabilities Disclosed Across Multiple Products
Vypr Intelligence · Jun 4, 2026

cvss	0.202
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000