CVE-2025-52629 — CVSS 3.7 (low): HCL AION is susceptible to Missing Content-Security-Policy. An The absence of a CSP header may increase the risk of cross-site scripting…
CVE-2025-52635 — CVSS 3.7 (low): A rusted types in scripts not enforced in CSP vulnerability has been identified in HCL AION.This issue affects AION: 2.0.