Bigfix Platform@10 Security Vulnerabilities and Issues — Bigfix Platform@10 CVE List

Lucene search

HcltechBigfix Platform10

5 matches found

CVE•added 2022/05/06 6:15 p.m.•1478 views

CVE-2021-27765

The BigFix Server API installer is created with InstallShield, which was affected by CVE-2021-41526, a vulnerability that could allow a local user to perform a privilege escalation. This vulnerability was resolved by updating to an InstallShield version with the underlying vulnerability fixed.

7.8CVSS6.6AI score0.00069EPSS

CVE•added 2022/05/06 6:15 p.m.•76 views

CVE-2021-27767

The BigFix Console installer is created with InstallShield, which was affected by CVE-2021-41526, a vulnerability that could allow a local user to perform a privilege escalation. This vulnerability was resolved by updating to an InstallShield version with the underlying vulnerability fixed.

7.8CVSS6.6AI score0.00069EPSS

CVE•added 2022/05/06 6:15 p.m.•74 views

CVE-2021-27766

The BigFix Client installer is created with InstallShield, which was affected by CVE-2021-41526, a vulnerability that could allow a local user to perform a privilege escalation. This vulnerability was resolved by updating to an InstallShield version with the underlying vulnerability fixed.

7.8CVSS6.6AI score0.00069EPSS

CVE•added 2024/03/28 3:15 p.m.•47 views

CVE-2023-45705

An administrative user of WebReports may perform a Server Side Request Forgery (SSRF) exploit through SMTP configuration options.

7.2CVSS4.1AI score0.00234EPSS

CVE•added 2022/12/19 11:15 a.m.•44 views

CVE-2022-38659

In specific scenarios, on Windows the operator credentials may be encrypted in a manner that is not completely machine-dependent.

7.8CVSS6.7AI score0.00022EPSS