Vulnerability Details CVE-2023-28016
Host Header Injection vulnerability in the HCL BigFix OSD Bare Metal Server version 311.12 or lower allows attacker to supply invalid input to cause the OSD Bare Metal Server to perform a redirect to an attacker-controlled domain.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 38.6%
CVSS Severity
CVSS v3 Score 3.1
References
Products affected by CVE-2023-28016
-
cpe:2.3:a:hcltech:bigfix_osd_bare_metal_server:-
-
cpe:2.3:a:hcltech:bigfix_osd_bare_metal_server:311.12