Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog Docs About Contact

hcl software hcl bigfix platform vulnerabilities and exploits

(subscribe to this query)
750
VMScore

CVE-2022-27544

BigFix Web Reports authorized users may see SMTP credentials in clear text.
Hcl Software Hcl BigfixHcltech Bigfix Platform
640
VMScore

CVE-2022-27545

BigFix Web Reports authorized users may perform HTML injection for the email administrative configuration page.
Hcl Software Hcl BigfixHcltech Bigfix Platform
710
VMScore

CVE-2023-37519

Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability. This XSS vulnerability is in the Download Status Report, which is served by the BigFix Server.
Hcl Software Hcl Bigfix PlatformHcltech Bigfix PlatformHcltech Bigfix Platform 11.0.0
710
VMScore

CVE-2023-37520

Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability identified in BigFix Server version 9.5.12.68, allowing for potential data exfiltration. This XSS vulnerability is in the Gather Status Report, which is served by the BigFix Relay.
Hcl Software Hcl Bigfix PlatformHcltech Bigfix PlatformHcltech Bigfix Platform 11.0.0
660
VMScore

CVE-2024-42189

HCL BigFix Web Reports might be subject to a Denial of Service (DoS) attack, due to a potentially weak validation of an API parameter.
Hcl Software Hcl Bigfix Platform
310
VMScore

CVE-2024-42193

HCL BigFix Web Reports' service communicates over HTTPS but exhibits a weakness in its handling of SSL certificate validation. This scenario presents a possibility of man-in-the-middle (MITM) attacks and data exposure as, if exploited, this vulnerability could potentially le...
Hcl Software Hcl Bigfix Platform
580
VMScore

CVE-2024-42200

HCL BigFix Web Reports might be subject to a Stored Cross-Site Scripting (XSS) attack, due to a potentially weak validation of user input.
Hcl Software Hcl Bigfix Platform
850
VMScore

CVE-2021-27761

Weak web transport security (Weak TLS): An attacker may be able to decrypt the data using attacks
Hcl Software Bigfix PlatformHcltech Bigfix Platform
1000
VMScore

CVE-2021-27762

Misconfigured security-related HTTP headers: Several security-related headers were missing or mis-configured on the web responses
Hcl Software Bigfix PlatformHcltech Bigfix Platform
880
VMScore

CVE-2021-27766

The BigFix Client installer is created with InstallShield, which was affected by CVE-2021-41526, a vulnerability that could allow a local user to perform a privilege escalation. This vulnerability was resolved by updating to an InstallShield version with the underlying vulnerabil...
Hcl Software Bigfix PlatformHcltech Bigfix Platform
Preferred Score:
VMScore
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
code executionallegrawinrarCVE-2025-6019online teacher record management systemCVE-2025-52556CVE-2025-6362arbitrary codeinjectCVE-2025-34028CVE-2025-6401CVE-2025-5479dnn.platform
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook