In the last 2 weeks HCL confirmed some security issues in multiple solutions and already provided fixes for all the issues.

HCL Connections

Vulnerability in IBM WebSphere Application Server IBM Java SDK
Multiple vulnerabilities in IBM WebSphere Application Server

For those issues you’re asked to upgrade your WebSphere environment to 8.5.5 FP28/29 and to install the 2 fixes

HCL Connections Security Update for Cross Site Scripting Vulnerability
This security issue is solved in HCL Connections 8 CR13 which is availabe on MHS


HCL Verse

Multiple open source vulnerabilities impact HCL Verse

A fix for HCL Verse 3.2.6 is already available on MHS


HCL SafeLinx

Multiple open source vulnerabilities impact HCL SafeLinx

To fix this issues just upgrade to the latest version of HCL SafeLinx ( 1.4.4 ) where all the security issues are solved.