CVE-2025-31992 🟡 Medium

CVE-2025-31992: HTML Injection Vulnerability in HCL Unica MaxAI Assistant

CVE-2025-31992 identifies an HTML injection vulnerability in HCL Unica MaxAI Assistant, enabling attackers to insert special characters processed client-side.

CVE ID

CVE-2025-31992

CVSS Score

4.6

Vendor

unknown

Published

Oct 12

HCL Unica MaxAI Assistant is susceptible to an HTML injection vulnerability. An attacker could insert special characters that are processed client-side in the context of the user's session.

Vulnerability Details

CVE ID: CVE-2025-31992
Severity: Medium
CVSS v3 Score: 4.6 / 10.0
Affected Vendor: unknown
Publication Date: October 12, 2025

External Resources

NIST NVD Database
MITRE CVE

Need Help?

Protect your infrastructure with our comprehensive security scanning tools.

Explore Security Scanners

Back to CVE Database