A cross-site scripting (XSS) vulnerability in the Web Reports component of HCL BigFix Platform can possibly allow an attacker to execute malicious javascript code into a webpage trying to retrieve cookie stored information. This is not the same vulnerability as identified in CVE-2023-37530.
Metrics
Affected Vendors & Products
References
History
Tue, 17 Dec 2024 20:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Hcltech
Hcltech bigfix Platform |
|
Weaknesses | CWE-79 | |
CPEs | cpe:2.3:a:hcltech:bigfix_platform:*:*:*:*:*:*:*:* cpe:2.3:a:hcltech:bigfix_platform:11.0.0:*:*:*:*:*:*:* |
|
Vendors & Products |
Hcltech
Hcltech bigfix Platform |
MITRE
Status: PUBLISHED
Assigner: HCL
Published: 2024-02-02T19:45:10.048Z
Updated: 2024-08-02T17:16:30.546Z
Reserved: 2023-07-06T16:12:30.394Z
Link: CVE-2023-37529
Vulnrichment
Updated: 2024-08-02T17:16:30.546Z
NVD
Status : Analyzed
Published: 2024-02-29T01:40:04.583
Modified: 2024-12-17T19:31:26.363
Link: CVE-2023-37529
Redhat
No data.