Lucene search
K

1473 matches found

NVD
NVD
added 2026/05/06 3:16 p.m.19 views

CVE-2025-31975

HCL BigFix Service Management SM is affected by an Information Disclosure – Server Banner issue was identified. Exposed server banners may reveal software versions and system details, potentially aiding attackers in targeting known vulnerabilities...

5.3CVSS0.00172EPSS
Exploits0References1
CVE
CVE
added 2026/05/06 1:51 p.m.17 views

CVE-2025-31975

Technical details about CVE-2025-31975 are not publicly available in the provided documents. The sources describe an information disclosure via server banners but do not specify affected versions, root cause, exploitability, or remediation. Monitor for updates.

5.3CVSS5.8AI score0.00172EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/06 1:51 p.m.9 views

CVE-2025-31975 HCL BigFix Service Management (SM) is affected by an Information Disclosure – Server Banner issue was identified.

HCL BigFix Service Management SM is affected by an Information Disclosure – Server Banner issue was identified. Exposed server banners may reveal software versions and system details, potentially aiding attackers in targeting known vulnerabilities...

2.6CVSS5.8AI score0.00172EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/06 1:51 p.m.6 views

CVE-2025-31975

HCL BigFix Service Management SM is affected by an Information Disclosure – Server Banner issue was identified. Exposed server banners may reveal software versions and system details, potentially aiding attackers in targeting known vulnerabilities...

2.6CVSS5.8AI score0.00172EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/05/06 1:51 p.m.39 views

CVE-2025-31975 HCL BigFix Service Management (SM) is affected by an Information Disclosure – Server Banner issue was identified.

HCL BigFix Service Management SM is affected by an Information Disclosure – Server Banner issue was identified. Exposed server banners may reveal software versions and system details, potentially aiding attackers in targeting known vulnerabilities...

2.6CVSS0.00172EPSS
Exploits0References1
CVE
CVE
added 2026/05/06 1:50 p.m.16 views

CVE-2025-52613

Technical details about CVE-2025-52613 are not publicly available in the provided documents. No explicit affected product versions, root cause, or fixes are disclosed here. Monitor for future updates from vendors and security advisories.

8.8CVSS5.8AI score0.00234EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/05/06 1:50 p.m.47 views

CVE-2025-52613 HCL BigFix Service Management (SM) is affected by use of a vulnerable component

HCL BigFix Service Management SM is affected by use of a vulnerable WSGI Server was identified. Deploying an outdated or insecure WSGI server may expose the application to known security weaknesses, potentially increasing the risk of exploitation and unauthorized access...

4.6CVSS0.00234EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/06 1:50 p.m.9 views

CVE-2025-52613

HCL BigFix Service Management SM is affected by use of a vulnerable WSGI Server was identified. Deploying an outdated or insecure WSGI server may expose the application to known security weaknesses, potentially increasing the risk of exploitation and unauthorized access...

4.6CVSS5.8AI score0.00234EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/06 1:50 p.m.7 views

CVE-2025-52613 HCL BigFix Service Management (SM) is affected by use of a vulnerable component

HCL BigFix Service Management SM is affected by use of a vulnerable WSGI Server was identified. Deploying an outdated or insecure WSGI server may expose the application to known security weaknesses, potentially increasing the risk of exploitation and unauthorized access...

4.6CVSS5.8AI score0.00234EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/06 1:49 p.m.9 views

CVE-2025-31976 HCL BigFix Service Management (SM) is vulnerable to insufficiently protected credentials

HCL BigFix Service Management SM is vulnerable to insufficiently protected credentials for a short duration while communicating with a backend, internal application which could allow an attacker to potentially misuse them, if exfiltrated...

4.8CVSS5.8AI score0.00162EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/06 1:49 p.m.59 views

CVE-2025-31976 HCL BigFix Service Management (SM) is vulnerable to insufficiently protected credentials

HCL BigFix Service Management SM is vulnerable to insufficiently protected credentials for a short duration while communicating with a backend, internal application which could allow an attacker to potentially misuse them, if exfiltrated...

4.8CVSS0.00162EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/06 1:49 p.m.10 views

CVE-2025-31976

HCL BigFix Service Management SM is vulnerable to insufficiently protected credentials for a short duration while communicating with a backend, internal application which could allow an attacker to potentially misuse them, if exfiltrated...

4.8CVSS5.8AI score0.00162EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/06 1:48 p.m.11 views

CVE-2025-31978 HCL BigFix Service Management (SM) does not adequately sanitize or safely render

HCL BigFix Service Management SM does not adequately sanitize or safely render spreadsheet files CSV, XLS, XLSX before processing or distributing them. An attacker could populate data fields which, when saved to a CSV file, may attempt information exfiltration or other malicious activity when...

4.6CVSS5.8AI score0.00137EPSS
Exploits0References1
CVE
CVE
added 2026/05/06 1:48 p.m.18 views

CVE-2025-31978

CVE-2025-31978 : HCL BigFix Service Management (SM) does not adequately sanitize or safely render spreadsheet files (CSV, XLS, XLSX) before processing or distributing them. The underlying issue may allow an attacker to craft data fields that, when saved to a CSV, could trigger information exfiltr...

4.6CVSS5.8AI score0.00137EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/05/06 1:48 p.m.43 views

CVE-2025-31978 HCL BigFix Service Management (SM) does not adequately sanitize or safely render

HCL BigFix Service Management SM does not adequately sanitize or safely render spreadsheet files CSV, XLS, XLSX before processing or distributing them. An attacker could populate data fields which, when saved to a CSV file, may attempt information exfiltration or other malicious activity when...

4.6CVSS0.00137EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/06 1:47 p.m.8 views

CVE-2025-31959

HCL BigFix Service Management SM application fails to strip EXIF metadata from uploaded images. This could lead to confidentiality and privacy risks if sensitive location information is unintentionally shared...

3.5CVSS5.8AI score0.00143EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/05/06 1:47 p.m.24 views

CVE-2025-31959

Affected product : HCL BigFix Service Management (SM). Vulnerability : The SM application fails to strip EXIF metadata from uploaded images. This metadata may include sensitive location information, leading to confidentiality/privacy risks if inadvertently shared. Impact (from sources) : Privacy/...

3.5CVSS5.8AI score0.00143EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/06 1:47 p.m.8 views

CVE-2025-31959 HCL BigFix Service Management (SM) application fails to strip EXIF metadata from uploaded images.

HCL BigFix Service Management SM application fails to strip EXIF metadata from uploaded images. This could lead to confidentiality and privacy risks if sensitive location information is unintentionally shared...

3.5CVSS5.8AI score0.00143EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/06 1:47 p.m.58 views

CVE-2025-31959 HCL BigFix Service Management (SM) application fails to strip EXIF metadata from uploaded images.

HCL BigFix Service Management SM application fails to strip EXIF metadata from uploaded images. This could lead to confidentiality and privacy risks if sensitive location information is unintentionally shared...

3.5CVSS0.00143EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/06 1:46 p.m.13 views

CVE-2025-31982

HCL BigFix Service Management SM had directories that were not linked or publicly visible but could be accessed directly. This could allow an increased risk of information disclosure or misuse of sensitive functionality...

3.7CVSS5.8AI score0.00153EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder