Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
HCL BigFix WebUI is affected by a host header poisoning vulnerability
Vulnerability Description
The BigFix WebUI application responds with HOST information from the HTTP header field making it vulnerable to Host Header Poisoning Attacks.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Vulnerability Type
对HTTP头部进行脚本语法转义处理不恰当
Vulnerability Title
HCL BigFix WebUI 安全漏洞
Vulnerability Description
HCL BigFix WebUI是印度HCL公司的一个基于网页的管理页面。 HCL BigFix WebUI存在安全漏洞,该漏洞源于HTTP标头字段中的HOST信息响应不当,可能导致主机头投毒攻击。
CVSS Information
N/A
Vulnerability Type
N/A