Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
HcltechBigfix Webui-

4 matches found

CVE
CVEadded 2022/05/06 6:15 p.m.64 views

CVE-2021-27764

Cookie without HTTPONLY flag set. NUMBER cookie(s) was set without Secure or HTTPOnly flags. The images show the cookie with the missing flag. (WebUI)

7.4CVSS6.7AI score0.0011EPSS
CVE
CVEadded 2020/07/17 9:15 p.m.33 views

CVE-2020-4104

HCL BigFix WebUI is vulnerable to stored cross-site scripting (XSS) within the Apps->Software module. An attacker can use XSS to send a malicious script to an unsuspecting user. This affects all versions prior to latest releases as specified in https://support.hcltechsw.com/csm?id=kb_article&sys...

5.4CVSS5AI score0.00343EPSS
CVE
CVEadded 2023/07/18 7:15 p.m.30 views

CVE-2023-28021

The BigFix WebUI uses weak cipher suites.

7.5CVSS6.3AI score0.00114EPSS
CVE
CVEadded 2023/07/18 7:15 p.m.27 views

CVE-2023-28020

URL redirection in Login page in HCL BigFix WebUI allows malicious user to redirect the client browser to an external site via redirect URL response header.

6.1CVSS5.1AI score0.00171EPSS