Lucene search
K

187 matches found

Cvelist
Cvelist
added 2024/01/16 5:33 p.m.34 views

CVE-2023-37523 HCL BigFix OSD Bare Metal Server WebUI is affected by missing or insecure tags

Missing or insecure tags in the HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower could allow an attacker to execute a malicious script on the user's browser...

5.6CVSS9.7AI score0.00392EPSS
Exploits0References1
NVD
NVD
added 2024/01/16 4:15 p.m.27 views

CVE-2023-37522

HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower has missing or insecure tags that could allow an attacker to execute a malicious script on the user's browser...

9.8CVSS6.7AI score0.00413EPSS
Exploits0References1
OSV
OSV
added 2024/01/16 4:15 p.m.5 views

CVE-2023-37521

HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower can sometimes include sensitive information in a query string which could allow an attacker to execute a malicious attack...

5.3CVSS5.9AI score0.00326EPSS
Exploits0References1
NVD
NVD
added 2024/01/16 4:15 p.m.32 views

CVE-2023-37521

HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower can sometimes include sensitive information in a query string which could allow an attacker to execute a malicious attack...

5.3CVSS4.2AI score0.00326EPSS
Exploits0References1
Prion
Prion
added 2024/01/16 4:15 p.m.19 views

Information disclosure

HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower can sometimes include sensitive information in a query string which could allow an attacker to execute a malicious attack...

5CVSS7AI score0.00326EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2024/01/16 4:15 p.m.17 views

Design/Logic Flaw

HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower has missing or insecure tags that could allow an attacker to execute a malicious script on the user's browser...

7.5CVSS7.3AI score0.00413EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/01/16 3:59 p.m.30 views

CVE-2023-37522 HCL BigFix OSD Bare Metal Server WebUI is affected by missing or insecure tags

HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower has missing or insecure tags that could allow an attacker to execute a malicious script on the user's browser...

5.6CVSS9.7AI score0.00413EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/01/16 3:59 p.m.4 views

CVE-2023-37522 HCL BigFix OSD Bare Metal Server WebUI is affected by missing or insecure tags

HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower has missing or insecure tags that could allow an attacker to execute a malicious script on the user's browser...

5.6CVSS7.3AI score0.00413EPSS
Exploits0References1
CVE
CVE
added 2024/01/16 3:59 p.m.53 views

CVE-2023-37522

The CVE-2023-37522 entry concerns HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower, where missing or insecure tags can allow a browser-exploiting XSS attacker to run malicious scripts in a user’s browser. Root cause: insecure/missing tags in the WebUI. Impact: could compromise user ...

9.8CVSS9.4AI score0.00413EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/16 3:55 p.m.13 views

CVE-2023-37521 HCL BigFix OSD Bare Metal Server WebUI is affected by sensitive information disclosure

HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower can sometimes include sensitive information in a query string which could allow an attacker to execute a malicious attack...

2.3CVSS6.7AI score0.00326EPSS
Exploits0References1
CVE
CVE
added 2024/01/16 3:55 p.m.57 views

CVE-2023-37521

CVE-2023-37521 affects HCL BigFix Bare OSD Metal Server WebUI versions 311.19 or lower. The issue is described as the inclusion of sensitive information in a query string, which could allow an attacker to execute a malicious attack. Documented impacts are information disclosure with potential abu...

5.3CVSS5.3AI score0.00326EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/01/16 12:0 a.m.6 views

HCL Technologies BigFix OSD Security Vulnerability

HCL Technologies BigFix OSD is part of a lifecycle management software from HCL Technologies, Inc. It is used for the deployment of operating systems. A security vulnerability exists in HCL Technologies BigFix Bare OSD Metal Server WebUI 311.19 and prior versions, which stems from the inclusion o...

5.3CVSS6.5AI score0.00326EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/01/16 12:0 a.m.4 views

PT-2024-12628 · Hcl · Hcl Bigfix Bare Osd Metal Server Webui

Name of the Vulnerable Software and Affected Versions: HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower Description: The issue is related to missing or insecure tags in the HCL BigFix Bare OSD Metal Server WebUI, which could allow an attacker to execute a malicious script on the...

9.8CVSS9.3AI score0.00413EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/01/16 12:0 a.m.8 views

PT-2024-12627 · Hcl · Hcl Bigfix Bare Osd Metal Server Webui

Name of the Vulnerable Software and Affected Versions: HCL BigFix Bare OSD Metal Server WebUI versions 311.19 or lower Description: The issue concerns the inclusion of sensitive information in a query string, potentially allowing an attacker to execute a malicious attack. Recommendations: For HCL...

5.3CVSS7.1AI score0.00326EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/01/16 12:0 a.m.6 views

HCL Technologies BigFix OSD Security Vulnerability

HCL Technologies BigFix OSD is part of a lifecycle management software from HCL Technologies, Inc. It is used for the deployment of operating systems. A security vulnerability exists in HCL Technologies BigFix Bare OSD Metal Server WebUI 311.19 and prior versions, which stems from the absence or...

9.8CVSS6.9AI score0.00413EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/01/16 12:0 a.m.5 views

PT-2024-12629 · Hcl · Hcl Bigfix Bare Osd Metal Server Webui

Name of the Vulnerable Software and Affected Versions: HCL BigFix Bare OSD Metal Server WebUI versions 311.19 or lower Description: The issue is related to missing or insecure tags in the HCL BigFix Bare OSD Metal Server WebUI, which could allow an attacker to execute a malicious script on the...

9.8CVSS9.2AI score0.00392EPSS
Exploits0References5
NVD
NVD
added 2023/06/22 11:15 p.m.27 views

CVE-2023-28006

The OSD Bare Metal Server uses a cryptographic algorithm that is no longer considered sufficiently secure...

7.8CVSS7.1AI score0.00108EPSS
Exploits0References1
OSV
OSV
added 2023/06/22 11:15 p.m.5 views

CVE-2023-28016

Host Header Injection vulnerability in the HCL BigFix OSD Bare Metal Server version 311.12 or lower allows attacker to supply invalid input to cause the OSD Bare Metal Server to perform a redirect to an attacker-controlled domain...

6.1CVSS6.4AI score0.00305EPSS
Exploits0References1
NVD
NVD
added 2023/06/22 11:15 p.m.14 views

CVE-2023-28016

Host Header Injection vulnerability in the HCL BigFix OSD Bare Metal Server version 311.12 or lower allows attacker to supply invalid input to cause the OSD Bare Metal Server to perform a redirect to an attacker-controlled domain...

6.1CVSS4.8AI score0.00305EPSS
Exploits0References1
OSV
OSV
added 2023/06/22 11:15 p.m.5 views

CVE-2023-28006

The OSD Bare Metal Server uses a cryptographic algorithm that is no longer considered sufficiently secure...

7.8CVSS5.8AI score0.00108EPSS
Exploits0References1
Rows per page
Query Builder