| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-42189 | HCL BigFix Web Reports might be subject to a Denial of Service (DoS) attack | HCL Software | HCL BigFix Platform | - | - | 2025-04-15 18:07:41 | Deep Dive |
| CVE-2024-42200 | HCL BigFix Web Reports is potentially susceptible to a Stored Cross-Site Scripting (XSS) attack | HCL Software | HCL BigFix Platform | - | - | 2025-04-15 18:00:18 | Deep Dive |
| CVE-2024-42187 | HCL BigFix Patch Download Plug-ins are affected by path traversal vulnerability | HCL Software | BigFix Patch Management Download Plug-ins | Medium | 5.3 | 2025-01-23 02:53:07 | Deep Dive |
| CVE-2024-42186 | HCL BigFix Patch Download Plug-ins are affected by an insecure protocol support | HCL Software | BigFix Patch Management Download Plug-ins | Low | 2.8 | 2025-01-23 02:47:41 | Deep Dive |
| CVE-2024-42185 | HCL BigFix Patch Download Plug-ins are affected by an insecure package which is susceptible to XML injection attacks | HCL Software | BigFix Patch Management Download Plug-ins | Low | 2.5 | 2025-01-23 02:10:03 | Deep Dive |
| CVE-2024-42184 | HCL BigFix Patch Download Plug-ins are affected by insecure support for file URI scheme | HCL Software | BigFix Patch Management Download Plug-ins | Low | 2.5 | 2025-01-23 01:59:01 | Deep Dive |
| CVE-2024-42183 | HCL BigFix Patch Download Plug-ins are affected by an arbitrary file download vulnerability | HCL Software | BigFix Patch Management Download Plug-ins | Low | 2.5 | 2025-01-23 01:42:47 | Deep Dive |
| CVE-2024-42182 | HCL BigFix Patch Download Plug-ins are affected by Server-Side Request Forgery (SSRF) vulnerability | HCL Software | BigFix Patch Management Download Plug-ins | Low | 2.5 | 2025-01-23 01:05:52 | Deep Dive |
| CVE-2024-42194 | HCL BigFix Inventory is affected by an access control vulnerability | HCL Software | BigFix Inventory | Low | 3.1 | 2024-12-17 17:28:25 | Deep Dive |
| CVE-2024-30142 | HCL BigFix Compliance is affected by a missing secure flag on a cookie | HCL Software | BigFix Compliance | Low | 3.8 | 2024-11-07 08:58:43 | Deep Dive |
| CVE-2024-30141 | HCL BigFix Compliance is vulnerable to the generation of error messages containing sensitive information | HCL Software | BigFix Compliance | Medium | 4.7 | 2024-11-07 08:36:14 | Deep Dive |
| CVE-2024-30140 | HCL BigFix Compliance is affected by unvalidated redirects and forwards | HCL Software | BigFix Compliance | Medium | 5.4 | 2024-11-07 08:17:57 | Deep Dive |
| CVE-2024-30117 | HCL BigFix Platform is affected by a DLL Hijack vulnerability | HCL Software | BigFix Platform | Low | 2.5 | 2024-10-14 22:55:57 | Deep Dive |
| CVE-2024-30126 | HCL BigFix Compliance is affected by a missing X-Frame-Options Header vulnerability | HCL Software | BigFix Compliance | Medium | 4.7 | 2024-07-18 19:17:02 | Deep Dive |
| CVE-2024-30125 | HCL BigFix Compliance is affected by an internal server error | HCL Software | BigFix Compliance | Medium | 6.2 | 2024-07-18 17:59:48 | Deep Dive |
| CVE-2024-23556 | HCL BigFix Platform is impacted by a failure to restrict SSL/TLS renegotiation | HCL Software | BigFix Platform | Medium | 5.9 | 2024-05-17 23:40:50 | Deep Dive |
| CVE-2024-23554 | HCL BigFix Platform is susceptible to Cross-Site Request Forgery | HCL Software | BigFix Platform | Medium | 5.7 | 2024-05-17 23:31:40 | Deep Dive |
| CVE-2024-23583 | HCL BigFix Platform is susceptible to insufficiently protected credentials | HCL Software | BigFix Platform | Medium | 6.7 | 2024-05-17 23:06:36 | Deep Dive |
| CVE-2024-23551 | HCL BigFix Compliance is potentially affected by Oracle database credentials stored at endpoint | HCL Software | BigFix Compliance | Medium | 6.5 | 2024-05-07 21:46:54 | Deep Dive |
| CVE-2024-23584 | HCL BigFix Asset Discovery is affected by a security vulnerability | HCL Software | BigFix Enterprise Suite Asset Discovery | Medium | 6.6 | 2024-04-08 23:05:12 | Deep Dive |