All 5 CVE vulnerabilities found in BigFix Service Management (SM), with AI-generated Chinese analysis, references, and POCs.
Vendor: HCL Software
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-31981 | HCL BigFix Service Management (SM) Discovery is vulnerable to unenforced encryption CWE-319 | 5.3 | Medium | 2026-04-21 |
| CVE-2025-31958 | HCL BigFix Service Management (SM) is susceptible to HTTP Request Smuggling CWE-444 | 3.7 | Low | 2026-04-21 |
| CVE-2025-31979 | A File Upload Validation Bypass vulnerability has been identified in the HCL BigFix Service Management (SM) CWE-434 | 5.4 | Medium | 2025-08-28 |
| CVE-2025-31977 | A cryptographic weakness has been identified in the HCL BigFix Service Management (SM) CWE-311 | 5.3 | Medium | 2025-08-28 |
| CVE-2025-31972 | HCL BigFix Service Management (SM) is affected by a Sensitive Information Exposure vulnerability CWE-319 | 6.5 | Medium | 2025-08-28 |
All 5 known CVE vulnerabilities affecting BigFix Service Management (SM) with full Chinese analysis, references, and POCs where available.