All 3 CVE vulnerabilities found in BigFix IVR, with AI-generated Chinese analysis, references, and POCs.
Vendor: HCLSoftware
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-31964 | HCL BigFix IVR is impacted by an improper service binding configuration CWE-200 | 2.2 | Low | 2026-01-07 |
| CVE-2025-31963 | HCL BigFix IVR is impacted by improper authentication and missing CSRF protection CWE-306 | 2.9 | Low | 2026-01-07 |
| CVE-2025-31962 | HCL BigFix IVR is impacted by an insufficient session expiration vulnerability CWE-613 | 2.0 | Low | 2026-01-07 |
All 3 known CVE vulnerabilities affecting BigFix IVR with full Chinese analysis, references, and POCs where available.