22 matches found
EUVD-2022-32045
Malicious code in bioql PyPI...
EUVD-2022-32046
Malicious code in bioql PyPI...
EUVD-2025-11092
Malicious code in bioql PyPI...
CVE-2024-42193
HCL BigFix Web Reports' service communicates over HTTPS but exhibits a weakness in its handling of SSL certificate validation. This scenario presents a possibility of man-in-the-middle MITM attacks and data exposure as, if exploited, this vulnerability could potentially lead to unauthorized acces...
CVE-2024-42193 HCL BigFix Web Reports is susceptible to a Man-In-The-Middle (MITM) attack
HCL BigFix Web Reports' service communicates over HTTPS but exhibits a weakness in its handling of SSL certificate validation. This scenario presents a possibility of man-in-the-middle MITM attacks and data exposure as, if exploited, this vulnerability could potentially lead to unauthorized acces...
CVE-2024-42193 HCL BigFix Web Reports is susceptible to a Man-In-The-Middle (MITM) attack
HCL BigFix Web Reports' service communicates over HTTPS but exhibits a weakness in its handling of SSL certificate validation. This scenario presents a possibility of man-in-the-middle MITM attacks and data exposure as, if exploited, this vulnerability could potentially lead to unauthorized acces...
CVE-2024-42193
CVE-2024-42193 refers to a weakness in SSL certificate validation in the HCL BigFix Web Reports service. The connected Nessus entry (KB0120585) ties this to affected HCL BigFix Server versions: 10.0.x before 10.0.13 and 11.x before 11.0.4, indicating a MITM risk and potential unauthorized access ...
CVE-2024-42200
HCL BigFix Web Reports might be subject to a Stored Cross-Site Scripting XSS attack, due to a potentially weak validation of user input...
CVE-2024-42189
HCL BigFix Web Reports might be subject to a Denial of Service DoS attack, due to a potentially weak validation of an API parameter...
CVE-2024-42189 HCL BigFix Web Reports might be subject to a Denial of Service (DoS) attack
HCL BigFix Web Reports might be subject to a Denial of Service DoS attack, due to a potentially weak validation of an API parameter...
CVE-2024-42189 HCL BigFix Web Reports might be subject to a Denial of Service (DoS) attack
HCL BigFix Web Reports might be subject to a Denial of Service DoS attack, due to a potentially weak validation of an API parameter...
CVE-2024-42200 HCL BigFix Web Reports is potentially susceptible to a Stored Cross-Site Scripting (XSS) attack
HCL BigFix Web Reports might be subject to a Stored Cross-Site Scripting XSS attack, due to a potentially weak validation of user input...
CVE-2024-42200 HCL BigFix Web Reports is potentially susceptible to a Stored Cross-Site Scripting (XSS) attack
HCL BigFix Web Reports might be subject to a Stored Cross-Site Scripting XSS attack, due to a potentially weak validation of user input...
PT-2025-16374 · Hcl · Hcl Bigfix Web Reports
Name of the Vulnerable Software and Affected Versions: HCL BigFix Web Reports affected versions not specified Description: The issue is related to a potentially weak validation of an API parameter, which might make HCL BigFix Web Reports subject to a Denial of Service DoS attack. Recommendations:...
PT-2025-16376 · Hcl · Hcl Bigfix Web Reports
Name of the Vulnerable Software and Affected Versions: HCL BigFix Web Reports affected versions not specified Description: The issue is related to a potentially weak validation of user input, which might make HCL BigFix Web Reports subject to a Stored Cross-Site Scripting XSS attack...
CVE-2022-27545
BigFix Web Reports authorized users may perform HTML injection for the email administrative configuration page...
CVE-2022-27544
BigFix Web Reports authorized users may see SMTP credentials in clear text...
CVE-2022-27545
BigFix Web Reports authorized users may perform HTML injection for the email administrative configuration page...
CVE-2022-27545
BigFix Web Reports authorized users may perform HTML injection for the email administrative configuration page...
CVE-2022-27544
BigFix Web Reports authorized users may see SMTP credentials in clear text...