| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-42451 | HCL BigFix Patch Management is vulnerable to insecurely stored credentials | HCL Software | BigFix Patch Management | Medium | 4.6 | 2023-10-11 05:01:31 | Deep Dive |
| CVE-2023-28014 | HCL BigFix Mobile can be affected by a cross-site scripting (XSS) vulnerability | HCL Software | HCL BigFix Mobile | Medium | 6.6 | 2023-07-26 23:31:16 | Deep Dive |
| CVE-2023-28012 | HCL BigFix Mobile can be affected by a command injection vulnerability | HCL Software | HCL BigFix Mobile | Medium | 5.4 | 2023-07-26 23:12:19 | Deep Dive |
| CVE-2023-28023 | HCL BigFix WebUI Software Distribution is affected by a cross site server request forgery vulnerability | HCL Software | HCL BigFix WebUI Software Distribution | Medium | 4.9 | 2023-07-18 19:07:41 | Deep Dive |
| CVE-2023-28021 | BigFix WebUI is vulnerable to use of a risky cryptographic algorithm | HCL Software | HCL BigFix WebUI | Medium | 5.9 | 2023-07-18 18:55:21 | Deep Dive |
| CVE-2023-28020 | URL redirection affects BigFix WebUI | HCL Software | HCL BigFix WebUI | Medium | 4.7 | 2023-07-18 18:09:13 | Deep Dive |
| CVE-2023-28019 | An SQL injection affects BigFix WebUI API | HCL Software | HCL BigFix WebUI API | Medium | 5.5 | 2023-07-18 17:57:23 | Deep Dive |
| CVE-2023-23344 | HCL BigFix WebUI Insights is susceptible to a lack of sufficient authorization | HCL Software | HCL BigFix WebUI Insights | Low | 3.0 | 2023-06-23 05:02:53 | Deep Dive |
| CVE-2023-28016 | HCL BigFix OSD Bare Metal Server is affected by a host header injection vulnerability | HCL Software | HCL BigFix OSD Bare Metal Server | Low | 3.1 | 2023-06-22 22:18:21 | Deep Dive |
| CVE-2023-28006 | HCL BigFix OSD Bare Metal Server is affected by a weak cryptographic algorithm. | HCL Software | HCL BigFix OSD Bare Metal Server | High | 7.0 | 2023-06-22 22:07:58 | Deep Dive |
| CVE-2023-23343 | HCL BigFix OSD Bare Metal Server version 311.12 or lower is affected by a clickjacking vulnerability. | HCL Software | HCL BigFix OSD Bare Metal Server | Low | 2.4 | 2023-06-22 21:57:38 | Deep Dive |
| CVE-2021-27782 | HCL BigFix Mobile / Modern Client Management Server passwords are susceptible to a brute-force attack | HCL Software | BigFix Mobile | Medium | 5.4 | 2023-01-19 18:54:01 | Deep Dive |
| CVE-2022-38658 | HCL BigFix Server Automation (SA) is affected by a security vulnerability around Notification Service | HCL Software | BigFix Server Automation | High | 7.7 | 2022-12-22 18:52:53 | Deep Dive |
| CVE-2022-38655 | HCL BigFix WebUI is affected by a missing-permission-check vulnerability | HCL Software | BigFix WebUI | Medium | 6.4 | 2022-12-20 04:51:01 | Deep Dive |
| CVE-2022-44756 | HCL BigFix Insights for Vulnerability Remediation (IVR) is vulnerable to improper input validation | HCL Software | BigFix Insights for Vulnerability Remediation | Medium | 6.4 | 2022-12-19 21:17:58 | Deep Dive |
| CVE-2022-42454 | HCL BigFix Insights for Vulnerability Remediation (IVR) is vulnerable to improper certificate validation | HCL Software | BigFix Insights for Vulnerability Remediation | Medium | 6.4 | 2022-12-19 21:10:14 | Deep Dive |
| CVE-2022-42453 | HCL BigFix Platform is affected by insufficient warnings | HCL Software | BigFix Platform | Medium | 6.9 | 2022-12-17 19:03:25 | Deep Dive |
| CVE-2022-38659 | HCL BigFix Platform is affected by insecure credential storage | HCL Software | BigFix Platform | Medium | 6.0 | 2022-12-17 18:44:57 | Deep Dive |
| CVE-2022-27545 | HCL BigFix Web Reports authorized users may perform HTML injection. | HCL Software | HCL BigFix | Medium | 4.6 | 2022-07-19 15:40:18 | Deep Dive |
| CVE-2022-27544 | HCL BigFix Web Reports authorized users may see sensitive information in clear text | HCL Software | HCL BigFix | Medium | 5.0 | 2022-07-19 15:40:13 | Deep Dive |