{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-31966", "assignerOrgId": "1e47fe04-f25f-42fa-b674-36de2c5e3cfc", "state": "PUBLISHED", "assignerShortName": "HCL", "dateReserved": "2025-04-01T18:46:23.152Z", "datePublished": "2026-03-17T11:29:21.144Z", "dateUpdated": "2026-03-17T12:57:24.795Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "1e47fe04-f25f-42fa-b674-36de2c5e3cfc", "shortName": "HCL", "dateUpdated": "2026-03-17T11:29:21.144Z"}, "title": "Boolean-Based SQL Injection in Multiple Unica Components", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-20", "description": "CWE-20 Improper input validation", "type": "CWE"}]}], "affected": [{"vendor": "HCL", "product": "Sametime", "versions": [{"status": "affected", "version": "Version 2.0.2 FP2 and older"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "HCL Sametime is vulnerable to broken server-side validation. While the application performs client-side input checks, these are not enforced by the web server. An attacker can bypass these restrictions by sending manipulated HTTP requests directly to the server.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "HCL Sametime is vulnerable to broken server-side validation. While the application performs client-side input checks, these are not enforced by the web server. An attacker can bypass these restrictions by sending manipulated HTTP requests directly to the server."}]}], "references": [{"url": "https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0124722"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "availabilityImpact": "NONE", "baseSeverity": "LOW", "baseScore": 2.7, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N"}}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 1.0.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-17T12:57:19.569896Z", "id": "CVE-2025-31966", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-17T12:57:24.795Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-31966", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-17T12:57:19.569896Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-17T12:57:22.096Z"}}], "cna": {"title": "Boolean-Based SQL Injection in Multiple Unica Components", "source": {"discovery": "UNKNOWN"}, "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 2.7, "attackVector": "NETWORK", "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "HCL", "product": "Sametime", "versions": [{"status": "affected", "version": "Version 2.0.2 FP2 and older"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0124722"}], "x_generator": {"engine": "Vulnogram 1.0.0"}, "descriptions": [{"lang": "en", "value": "HCL Sametime is vulnerable to broken server-side validation. While the application performs client-side input checks, these are not enforced by the web server. An attacker can bypass these restrictions by sending manipulated HTTP requests directly to the server.", "supportingMedia": [{"type": "text/html", "value": "HCL Sametime is vulnerable to broken server-side validation. While the application performs client-side input checks, these are not enforced by the web server. An attacker can bypass these restrictions by sending manipulated HTTP requests directly to the server.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-20", "description": "CWE-20 Improper input validation"}]}], "providerMetadata": {"orgId": "1e47fe04-f25f-42fa-b674-36de2c5e3cfc", "shortName": "HCL", "dateUpdated": "2026-03-17T11:29:21.144Z"}}}, "cveMetadata": {"cveId": "CVE-2025-31966", "state": "PUBLISHED", "dateUpdated": "2026-03-17T12:57:24.795Z", "dateReserved": "2025-04-01T18:46:23.152Z", "assignerOrgId": "1e47fe04-f25f-42fa-b674-36de2c5e3cfc", "datePublished": "2026-03-17T11:29:21.144Z", "assignerShortName": "HCL"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:hcltech:sametime:*:*:*:*:*:-:*:*", "matchCriteriaId": "B4DDE282-CD1A-4F62-BE5C-AB81CCC702B1", "versionEndExcluding": "12.0.3", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "HCL Sametime is vulnerable to broken server-side validation. While the application performs client-side input checks, these are not enforced by the web server. An attacker can bypass these restrictions by sending manipulated HTTP requests directly to the server."}, {"lang": "es", "value": "HCL Sametime es vulnerable a una validaci\u00f3n rota del lado del servidor. Aunque la aplicaci\u00f3n realiza comprobaciones de entrada del lado del cliente, estas no son aplicadas por el servidor web. Un atacante puede eludir estas restricciones enviando solicitudes HTTP manipuladas directamente al servidor."}], "id": "CVE-2025-31966", "lastModified": "2026-03-31T21:06:04.083", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 2.7, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 1.4, "source": "psirt@hcl.com", "type": "Secondary"}]}, "published": "2026-03-17T12:16:12.337", "references": [{"source": "psirt@hcl.com", "tags": ["Vendor Advisory"], "url": "https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0124722"}], "sourceIdentifier": "psirt@hcl.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "psirt@hcl.com", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,2.0.2 FP2]"}}], "enrichment": {"confidence": 86.0, "confidence_source": "matching", "scores": [{"score": 86.0, "source": "matching"}]}, "original": {"product": "Sametime", "source": "cna", "vendor": "HCL"}, "product": "sametime", "vendor": "hcltech"}], "analysis": {"en": {"generated_at": "2026-04-01T07:24:48.866297+00:00", "value": {"mitigation_remediation": ["Apply the patch or update indicated in the HCL support article (KB0124722).", "Verify that server\u2011side input validation is enabled or configure the application to reject malformed inputs.", "Deploy a web\u2011application firewall or input filtering to block suspicious requests until a patch is applied.", "Enable logging and monitoring for anomalous HTTP traffic that may indicate exploitation attempts.", "Keep the system updated with future HCL security releases."], "summary": {"action": "Patch", "impact": "SQL injection via server\u2011side validation bypass"}, "threat_synthesis": {"affected_systems": "The affected product is HCL Sametime. No specific version information is supplied in the CNA data. Administrators should review their deployment and consult the HCL support article referenced in the advisory to determine if they are impacted.", "description_and_impact": "HCL Sametime contains a flaw where server\u2011side input validation is missing, allowing client\u2011side checks to be bypassed. An attacker can craft HTTP requests that reach the server unfiltered, leading to a boolean\u2011based SQL injection. This vulnerability may enable unauthorized execution of SQL commands, potentially exposing or altering sensitive data.", "risk_and_exploitability": "The CVSS score of 2.7 indicates low severity, and the EPSS score below 1% suggests a low probability of exploitation. Because the vulnerability is not listed in the CISA KEV catalog, no large\u2011scale compromises have been reported. However, the remote attacker can issue HTTP requests directly to the Sametime server to exploit the flaw. Patching remains the recommended action to eliminate this risk."}}}}, "created": "2026-03-18T12:13:25.792143+00:00", "updated": "2026-04-02T08:00:06.419081+00:00", "vendors": ["hcltech", "hcltech$PRODUCT$sametime"]}