Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
HcltechBigfix Mobile

6 matches found

CVE
CVEadded 2022/05/27 5:15 p.m.77 views

CVE-2021-27780

The software may be vulnerable to both Un-Auth XML interaction and unauthenticated device enrollment.

5.3CVSS5.3AI score0.00205EPSS
CVE
CVEadded 2022/05/27 5:15 p.m.67 views

CVE-2021-27781

The Master operator may be able to embed script tag in HTML with alert pop-up display cookie.

6.6CVSS5.2AI score0.00205EPSS
CVE
CVEadded 2022/05/25 5:15 p.m.65 views

CVE-2021-27783

User generated PPKG file for Bulk Enroll may have unencrypted sensitive information exposed.

6.8CVSS6.4AI score0.00109EPSS
CVE
CVEadded 2023/01/20 7:15 a.m.39 views

CVE-2021-27782

HCL BigFix Mobile / Modern Client Management Admin and Config UI passwords can be brute-forced.User should be locked out for multiple invalid attempts.

7.5CVSS6.5AI score0.00167EPSS
CVE
CVEadded 2023/07/27 12:15 a.m.38 views

CVE-2023-28012

HCL BigFix Mobile is vulnerable to a command injection attack. An authenticated attacker could run arbitrary shell commands on the WebUI server.

8.8CVSS7.4AI score0.00499EPSS
CVE
CVEadded 2023/07/27 12:15 a.m.37 views

CVE-2023-28014

HCL BigFix Mobile is vulnerable to a cross-site scripting attack. An authenticated attacker could inject malicious scripts into the application.

6.6CVSS5.3AI score0.00108EPSS