CVE-2025-59852

# Proof of Concept for CVE-2025-59852 # This script checks if the target accepts unencrypted HTTP connections. import requests import sys def check_encryption(target_url): """ Checks if the target responds to HTTP without redirecting to HTTPS. """ try: # Ensure the URL uses http scheme if not target_url.startswith("http://"): target_url = "http://" + target_url print(f"[*] Testing unencrypted connection to: {target_url}") # Send a request allowing redirects to see if it forces HTTPS response = requests.get(target_url, timeout=5, allow_redirects=True) final_url = response.url if final_url.startswith("https://"): print("[+] Server enforces HTTPS redirection. Potential mitigation in place.") else: print("[!] Vulnerability Confirmed: Server accepts unencrypted HTTP traffic.") print(f"[-] Final URL: {final_url}") print(f"[-] Status Code: {response.status_code}") except requests.RequestException as e: print(f"[Error] Could not connect to target: {e}") if __name__ == "__main__": if len(sys.argv) < 2: print("Usage: python cve_2025_59852_poc.py <target_url>") print("Example: python cve_2025_59852_poc.py http://example.com") else: check_encryption(sys.argv[1])

{"cve": {"id": "CVE-2025-59852", "sourceIdentifier": "[email protected]", "published": "2026-05-06T11:16:04.560", "lastModified": "2026-05-07T20:03:28.500", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "HCL DFXAnalytics is affected by an Insufficient Transport Layer Protection vulnerability where data is transmitted over the network without encryption, which could allow an attacker to compromise the confidentiality, integrity, and authentication of sensitive information."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N", "baseScore": 3.7, "baseSeverity": "LOW", "attackVector": "NETWORK", "attackComplexity": "HIGH", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.2, "impactScore": 1.4}, {"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "baseScore": 9.1, "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "NONE"}, "exploitabilityScore": 3.9, "impactScore": 5.2}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-319"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:hcltech:dfxanalytics:*:*:*:*:*:*:*:*", "versionEndExcluding": "4.1", "matchCriteriaId": "EBC416E1-5496-4734-AE0E-8AA575A69D18"}]}]}], "references": [{"url": "https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0130569", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}