Latest vulnerabilities for "hcltech bigfix platform"

Hcltech Bigfix PlatformA cross-site scripting (XSS) vulnerability affects HCL BigFix Platform

medium

6.5

First published (updated )

CVE-2023-37528

Hcltech Bigfix PlatformA cross-site scripting (XSS) vulnerability affects HCL BigFix Platform

medium

5.4

EPSS

0.04%

First published (updated )

CVE-2024-23553

Hcltech Bigfix PlatformA cross-site scripting (XSS) vulnerability affects HCL BigFix Platform

medium

6.1

First published (updated )

CVE-2023-37527

Hcltech Bigfix PlatformHCL BigFix Platform is affected by Unathenticated Stored Cross-Site Scripting (XSS)

high

7.7

First published (updated )

CVE-2023-37520

Hcltech Bigfix PlatformHCL BigFix Platform is affected by Unathenticated Stored Cross-Site Scripting (XSS)

high

7.7

First published (updated )

CVE-2023-37519

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

ubuntu/xerces-cHCL BigFix Platform is vulnerable to an integer overflow in xerces-c++ 3.2.3

high

8.8

First published (updated )

CVE-2023-37536

Hcltech Bigfix PlatformHCL BigFix Platform is affected by insufficient warnings

medium

6.9

First published (updated )

CVE-2022-42453

Hcltech Bigfix PlatformHCL BigFix Platform is affected by insecure credential storage

high

7.8

First published (updated )

CVE-2022-38659

Hcltech Bigfix PlatformHCL BigFix Web Reports authorized users may perform HTML injection.

medium

5.4

First published (updated )

CVE-2022-27545

Hcltech Bigfix PlatformHCL BigFix Web Reports authorized users may see sensitive information in clear text

medium

6.5

First published (updated )

CVE-2022-27544

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Hcltech Bigfix PlatformHCL BigFix Platform Console is affected by a Privilege Escalation Vulnerability

high

7.8

First published (updated )

CVE-2021-27767

Hcltech Bigfix PlatformHCL BigFix Platform Client is affected by a Privilege Escalation Vulnerability

high

7.8

First published (updated )

CVE-2021-27766

Hcltech Bigfix PlatformHCL BigFix Platform is affected by misconfigured security-related HTTP headers

critical

9.8

First published (updated )

CVE-2021-27762

Hcltech Bigfix PlatformHCL BigFix Platform is affected by weak web transport security

high

7.5

First published (updated )

CVE-2021-27761

Hcltech Bigfix PlatformHCL BigFix Platform Server API is affected by Privilege Escalation Vulnerability

high

7.8

First published (updated )

CVE-2021-27765

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Hcltech Bigfix PlatformBigFix Inventory up to v10.0.2 does not set the secure flag for the session cookie in an https sessi…

medium

5.3

First published (updated )

CVE-2020-14248

Hcltech Bigfix PlatformTLS-RSA cipher suites are not disabled in HCL BigFix Inventory up to v10.0.2. If TLS 2.0 and secure …

high

7.5

First published (updated )

CVE-2020-14254

Hcltech Bigfix Platform"BigFix Platform is storing clear text credentials within the system's memory. An attacker who is ab…

medium

6

First published (updated )

CVE-2020-4095

Versions

Hcltech Bigfix PlatformA cross-site scripting (XSS) vulnerability affects HCL BigFix Platform

Hcltech Bigfix PlatformA cross-site scripting (XSS) vulnerability affects HCL BigFix Platform

Hcltech Bigfix PlatformA cross-site scripting (XSS) vulnerability affects HCL BigFix Platform

Hcltech Bigfix PlatformHCL BigFix Platform is affected by Unathenticated Stored Cross-Site Scripting (XSS)

Hcltech Bigfix PlatformHCL BigFix Platform is affected by Unathenticated Stored Cross-Site Scripting (XSS)

Never miss a vulnerability like this again

ubuntu/xerces-cHCL BigFix Platform is vulnerable to an integer overflow in xerces-c++ 3.2.3

Hcltech Bigfix PlatformHCL BigFix Platform is affected by insufficient warnings

Hcltech Bigfix PlatformHCL BigFix Platform is affected by insecure credential storage

Hcltech Bigfix PlatformHCL BigFix Web Reports authorized users may perform HTML injection.

Hcltech Bigfix PlatformHCL BigFix Web Reports authorized users may see sensitive information in clear text

Never miss a vulnerability like this again

Hcltech Bigfix PlatformHCL BigFix Platform Console is affected by a Privilege Escalation Vulnerability

Hcltech Bigfix PlatformHCL BigFix Platform Client is affected by a Privilege Escalation Vulnerability

Hcltech Bigfix PlatformHCL BigFix Platform is affected by misconfigured security-related HTTP headers

Hcltech Bigfix PlatformHCL BigFix Platform is affected by weak web transport security

Hcltech Bigfix PlatformHCL BigFix Platform Server API is affected by Privilege Escalation Vulnerability

Never miss a vulnerability like this again

Hcltech Bigfix PlatformBigFix Inventory up to v10.0.2 does not set the secure flag for the session cookie in an https sessi…

Hcltech Bigfix PlatformTLS-RSA cipher suites are not disabled in HCL BigFix Inventory up to v10.0.2. If TLS 2.0 and secure …

Hcltech Bigfix Platform"BigFix Platform is storing clear text credentials within the system's memory. An attacker who is ab…

Company

Resources

Contact