CVE-2025-59866
LOW
NVD
CVSS Score
3.3
Severity
LOW
Published
Jul 17, 2026
Vendor
unknown
Description
The HCL DFMPro, DFXAnalytics and DFXServer installers are affected by ‘Insecure file permissions Leading to Privilege Escalation’ vulnerability, which enables any logged-in non-administrative user to overwrite or replace the executable file with a malicious binary.