Back to overview

CVE-2026-56455

MEDIUM
5.3
CVSS 3.1
Description
HCL DFXAnalytics is affected by a Buffer Overflow vulnerability that can lead to a Denial of Service (DoS). The application fails to properly validate input sizes, allowing an attacker to pass an excessive amount of information into a memory container, which can cause the system to crash or become unresponsive. To mitigate this flaw, comprehensive input length checks must be implemented and enforced on both the client and server sides.

Metadata

CVE ID
CVE-2026-56455
State
PUBLISHED
Assigner
HCL
Reserved
2026-06-22 13:38 UTC
Published
2026-07-16 13:13 UTC
Last updated
2026-07-16 13:35 UTC
Primary CWE
CWE-121
CWE-121: Stack-based Buffer Overflow
Vendor / Product
HCL Software / DFXAnalytics
Sources
cve.org  ·  NVD

Severity & Metrics

5.3 MEDIUM CVSS 3.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
SSVC — CISA Coordinator
Exploitation
none
Automatable
yes
Tech. Impact
partial
Affected products (1)
VendorProductPlatformVersions
HCL Software DFXAnalytics version 3.0 and below
Weakness (CWE)
CWESourceDescription
CWE-121 cna CWE-121: Stack-based Buffer Overflow
CVSS scores (1)
ScoreSeverityVersionSourceVector
5.3 MEDIUM 3.1 cna CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Back to overview