Vulnerability Details CVE-2022-27545
BigFix Web Reports authorized users may perform HTML injection for the email administrative configuration page.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 42.3%
CVSS Severity
CVSS v3 Score 4.6
References
Products affected by CVE-2022-27545
-
cpe:2.3:a:hcltech:bigfix_platform:10.0.0
-
cpe:2.3:a:hcltech:bigfix_platform:10.0.2
-
cpe:2.3:a:hcltech:bigfix_platform:10.0.5
-
cpe:2.3:a:hcltech:bigfix_platform:9.5
-
cpe:2.3:a:hcltech:bigfix_platform:9.5.10
-
cpe:2.3:a:hcltech:bigfix_platform:9.5.11
-
cpe:2.3:a:hcltech:bigfix_platform:9.5.12
-
cpe:2.3:a:hcltech:bigfix_platform:9.5.12.68
-
cpe:2.3:a:hcltech:bigfix_platform:9.5.13
-
cpe:2.3:a:hcltech:bigfix_platform:9.5.14
-
cpe:2.3:a:hcltech:bigfix_platform:9.5.15
-
cpe:2.3:a:hcltech:bigfix_platform:9.5.18
-
cpe:2.3:a:hcltech:bigfix_platform:9.5.2
-
cpe:2.3:a:hcltech:bigfix_platform:9.5.3
-
cpe:2.3:a:hcltech:bigfix_platform:9.5.5
-
cpe:2.3:a:hcltech:bigfix_platform:9.5.6
-
cpe:2.3:a:hcltech:bigfix_platform:9.5.7
-
cpe:2.3:a:hcltech:bigfix_platform:9.5.9