Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
HCL BigFix Modern Client Management (MCM) is affected by an insecure Content Security Policy (CSP)
Vulnerability Description
HCL BigFix Modern Client Management (MCM) 3.3 and earlier are vulnerable to certain insecure directives within the Content Security Policy (CSP). An attacker could trick users into performing actions by not properly restricting the sources of scripts and other content.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
Vulnerability Type
保护机制失效
Vulnerability Title
HCL BigFix Modern Client Management 安全漏洞
Vulnerability Description
HCL BigFix Modern Client Management(HCL Technologies BigFix MCM)是印度HCL公司的一种现代客户端管理系统。 HCL BigFix Modern Client Management 3.3及之前版本存在安全漏洞,该漏洞源于内容安全策略中存在不安全指令,可能导致攻击者诱骗用户执行操作。
CVSS Information
N/A
Vulnerability Type
N/A