HCL BigFix Compliance is vulnerable to the generation of error messages containing sensitive information. Detailed error messages can provide enticement information or expose information about its environment, users, or associated data.
History

Thu, 07 Nov 2024 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 07 Nov 2024 08:45:00 +0000

Type Values Removed Values Added
Description HCL BigFix Compliance is vulnerable to the generation of error messages containing sensitive information. Detailed error messages can provide enticement information or expose information about its environment, users, or associated data.
Title HCL BigFix Compliance is vulnerable to the generation of error messages containing sensitive information
Weaknesses CWE-209
References
Metrics cvssV3_1

{'score': 4.7, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:L'}


cve-icon MITRE

Status: PUBLISHED

Assigner: HCL

Published: 2024-11-07T08:36:13.573Z

Updated: 2024-11-07T14:28:28.086Z

Reserved: 2024-03-22T23:57:24.981Z

Link: CVE-2024-30141

cve-icon Vulnrichment

Updated: 2024-11-07T14:28:24.704Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-11-07T09:15:03.707

Modified: 2024-11-08T19:01:03.880

Link: CVE-2024-30141

cve-icon Redhat

No data.