CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-42193

HCL BigFix Web Reports' service communicates over HTTPS but exhibits a weakness in its handling of SSL certificate validation. This scenario presents a possibility of man-in-the-middle (MITM) attacks and data exposure as, if exploited, this vulnerability could potentially lead to unauthorized access.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.7%

CVSS Severity

CVSS v3 Score 8.1

References

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0120585

Products affected by CVE-2024-42193

Hcltech » Bigfix Platform » Version: 10.0.0

cpe:2.3:a:hcltech:bigfix_platform:10.0.0
Hcltech » Bigfix Platform » Version: 10.0.10

cpe:2.3:a:hcltech:bigfix_platform:10.0.10
Hcltech » Bigfix Platform » Version: 10.0.11

cpe:2.3:a:hcltech:bigfix_platform:10.0.11
Hcltech » Bigfix Platform » Version: 10.0.12

cpe:2.3:a:hcltech:bigfix_platform:10.0.12
Hcltech » Bigfix Platform » Version: 10.0.2

cpe:2.3:a:hcltech:bigfix_platform:10.0.2
Hcltech » Bigfix Platform » Version: 10.0.5

cpe:2.3:a:hcltech:bigfix_platform:10.0.5
Hcltech » Bigfix Platform » Version: 10.0.7

cpe:2.3:a:hcltech:bigfix_platform:10.0.7
Hcltech » Bigfix Platform » Version: 10.0.8

cpe:2.3:a:hcltech:bigfix_platform:10.0.8
Hcltech » Bigfix Platform » Version: 11.0.0

cpe:2.3:a:hcltech:bigfix_platform:11.0.0
Hcltech » Bigfix Platform » Version: 11.0.1

cpe:2.3:a:hcltech:bigfix_platform:11.0.1
Hcltech » Bigfix Platform » Version: 11.0.2

cpe:2.3:a:hcltech:bigfix_platform:11.0.2
Hcltech » Bigfix Platform » Version: 11.0.3

cpe:2.3:a:hcltech:bigfix_platform:11.0.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-42193

Products

Pricing

Contact Us