2 matches found
CVE-2021-27759
The CVE-2021-27759 entry maps to a data forgery vulnerability affecting HCL BigFix Platform per CNNVD-202205-2600. The issue allows an attacker to cause a victim’s browser to emit an HTTP request to an arbitrary URL within the application due to insufficient verification of intentional actions. T...
CVE-2021-27758
CVE-2021-27758 describes a CSRF vulnerability in a login form that can be exploited to spam or force login-related actions, potentially blocking a legitimate user’s access. The connected records identify the affected product as HCL BigFix Platform and describe the issue as a login CSRF flaw that ...