Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
HCL BigFix SaaS Remediate is affected by a security vulnerability
Vulnerability Description
The BigFix SaaS's HTTP responses were missing some security headers. The absence of these headers weakens the application's client-side security posture, making it more vulnerable to common web attacks that these headers are designed to mitigate, such as Cross-Site Scripting (XSS), Clickjacking, and protocol downgrade attacks.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Vulnerability Type
不安全的默认资源初始化
Vulnerability Title
HCL BigFix SaaS 安全漏洞
Vulnerability Description
HCL BigFix SaaS是印度HCL公司的一个终端管理平台。 HCL BigFix SaaS存在安全漏洞,该漏洞源于缺少安全标头,可能导致跨站脚本和点击劫持攻击。
CVSS Information
N/A
Vulnerability Type
N/A