CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-37527

A reflected cross-site scripting (XSS) vulnerability in the Web Reports component of HCL BigFix Platform can possibly allow an attacker to execute malicious javascript code in the application session or in database, via remote injection, while rendering content in a web page.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 26.6%

CVSS Severity

CVSS v3 Score 5.4

References

Products affected by CVE-2023-37527

Hcltech » Bigfix Platform » Version: 10.0.0

cpe:2.3:a:hcltech:bigfix_platform:10.0.0
Hcltech » Bigfix Platform » Version: 10.0.10

cpe:2.3:a:hcltech:bigfix_platform:10.0.10
Hcltech » Bigfix Platform » Version: 10.0.2

cpe:2.3:a:hcltech:bigfix_platform:10.0.2
Hcltech » Bigfix Platform » Version: 10.0.5

cpe:2.3:a:hcltech:bigfix_platform:10.0.5
Hcltech » Bigfix Platform » Version: 10.0.7

cpe:2.3:a:hcltech:bigfix_platform:10.0.7
Hcltech » Bigfix Platform » Version: 10.0.8

cpe:2.3:a:hcltech:bigfix_platform:10.0.8
Hcltech » Bigfix Platform » Version: 11.0.0

cpe:2.3:a:hcltech:bigfix_platform:11.0.0
Hcltech » Bigfix Platform » Version: 9.5

cpe:2.3:a:hcltech:bigfix_platform:9.5
Hcltech » Bigfix Platform » Version: 9.5.10

cpe:2.3:a:hcltech:bigfix_platform:9.5.10
Hcltech » Bigfix Platform » Version: 9.5.11

cpe:2.3:a:hcltech:bigfix_platform:9.5.11
Hcltech » Bigfix Platform » Version: 9.5.12

cpe:2.3:a:hcltech:bigfix_platform:9.5.12
Hcltech » Bigfix Platform » Version: 9.5.12.68

cpe:2.3:a:hcltech:bigfix_platform:9.5.12.68
Hcltech » Bigfix Platform » Version: 9.5.13

cpe:2.3:a:hcltech:bigfix_platform:9.5.13
Hcltech » Bigfix Platform » Version: 9.5.14

cpe:2.3:a:hcltech:bigfix_platform:9.5.14
Hcltech » Bigfix Platform » Version: 9.5.15

cpe:2.3:a:hcltech:bigfix_platform:9.5.15
Hcltech » Bigfix Platform » Version: 9.5.18

cpe:2.3:a:hcltech:bigfix_platform:9.5.18
Hcltech » Bigfix Platform » Version: 9.5.2

cpe:2.3:a:hcltech:bigfix_platform:9.5.2
Hcltech » Bigfix Platform » Version: 9.5.20

cpe:2.3:a:hcltech:bigfix_platform:9.5.20
Hcltech » Bigfix Platform » Version: 9.5.21

cpe:2.3:a:hcltech:bigfix_platform:9.5.21
Hcltech » Bigfix Platform » Version: 9.5.23

cpe:2.3:a:hcltech:bigfix_platform:9.5.23
Hcltech » Bigfix Platform » Version: 9.5.3

cpe:2.3:a:hcltech:bigfix_platform:9.5.3
Hcltech » Bigfix Platform » Version: 9.5.5

cpe:2.3:a:hcltech:bigfix_platform:9.5.5
Hcltech » Bigfix Platform » Version: 9.5.6

cpe:2.3:a:hcltech:bigfix_platform:9.5.6
Hcltech » Bigfix Platform » Version: 9.5.7

cpe:2.3:a:hcltech:bigfix_platform:9.5.7
Hcltech » Bigfix Platform » Version: 9.5.9

cpe:2.3:a:hcltech:bigfix_platform:9.5.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-37527

Products

Pricing

Contact Us