CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-37518

HCL BigFix ServiceNow is vulnerable to arbitrary code injection. A malicious authorized attacker could inject arbitrary code and execute within the context of the running user.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 31.5%

CVSS Severity

CVSS v3 Score 6.4

References

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0110202
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0110202

Products affected by CVE-2023-37518

Hcltech » Bigfix Servicenow Data Flow » Version: N/A

cpe:2.3:a:hcltech:bigfix_servicenow_data_flow:-
Hcltech » Bigfix Servicenow Data Flow » Version: 1.2

cpe:2.3:a:hcltech:bigfix_servicenow_data_flow:1.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-37518

Products

Pricing

Contact Us