A cross-site scripting (XSS) vulnerability in the Web Reports component of HCL BigFix Platform can possibly allow an attacker to execute malicious javascript code into a form field of a webpage by a user with privileged access.
Metrics
Affected Vendors & Products
References
History
Tue, 17 Dec 2024 20:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Hcltech
Hcltech bigfix Platform |
|
Weaknesses | CWE-79 | |
CPEs | cpe:2.3:a:hcltech:bigfix_platform:*:*:*:*:*:*:*:* cpe:2.3:a:hcltech:bigfix_platform:11.0.0:*:*:*:*:*:*:* |
|
Vendors & Products |
Hcltech
Hcltech bigfix Platform |
MITRE
Status: PUBLISHED
Assigner: HCL
Published: 2024-02-02T20:07:44.872Z
Updated: 2024-08-02T17:16:30.432Z
Reserved: 2023-07-06T16:12:30.394Z
Link: CVE-2023-37531
Vulnrichment
Updated: 2024-08-02T17:16:30.432Z
NVD
Status : Analyzed
Published: 2024-02-29T01:40:04.893
Modified: 2024-12-17T19:31:43.997
Link: CVE-2023-37531
Redhat
No data.