Known Vulnerabilities for Bigfix Platform by Hcltech
Listed below are 10 of the newest known vulnerabilities associated with "Bigfix Platform" by "Hcltech".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-21767 json | HCL BigFix Platform is affected by insufficient authentication. The application might allow users to access sensitive area... | Not Provided | 2026-04-02 | 2026-04-02 |
| CVE-2026-21765 json | HCL BigFix Platform is affected by insecure permissions on private cryptographic keys. The private cryptographic keys locat... | Not Provided | 2026-04-02 | 2026-04-02 |
| CVE-2023-37536 json | An integer overflow in xerces-c++ 3.2.3 in BigFix Platform allows remote attackers to cause out-of-bound access via HTTP requ... | 8.8 - HIGH | 2023-10-11 | 2023-12-31 |
| CVE-2022-42453 json | There are insufficient warnings when a Fixlet is imported by a user. The warning message currently assumes the owner of the s... | 6.5 - MEDIUM | 2022-12-19 | 2023-11-07 |
| CVE-2022-38659 json | In specific scenarios, on Windows the operator credentials may be encrypted in a manner that is not completely machine-depend... | 7.8 - HIGH | 2022-12-19 | 2023-11-07 |
| CVE-2022-27545 json | BigFix Web Reports authorized users may perform HTML injection for the email administrative configuration page. | 5.4 - MEDIUM | 2022-07-19 | 2022-07-27 |
| CVE-2022-27544 json | BigFix Web Reports authorized users may see SMTP credentials in clear text. | 6.5 - MEDIUM | 2022-07-19 | 2022-07-27 |
| CVE-2021-27767 json | The BigFix Console installer is created with InstallShield, which was affected by CVE-2021-41526, a vulnerability that could ... | 7.8 - HIGH | 2022-05-06 | 2022-05-16 |
| CVE-2021-27766 json | The BigFix Client installer is created with InstallShield, which was affected by CVE-2021-41526, a vulnerability that could a... | 7.8 - HIGH | 2022-05-06 | 2022-05-16 |
| CVE-2021-27765 json | The BigFix Server API installer is created with InstallShield, which was affected by CVE-2021-41526, a vulnerability that cou... | 7.8 - HIGH | 2022-05-06 | 2022-05-16 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Hcltech | Bigfix Platform | 9.5.9 | |||
| Application | Hcltech | Bigfix Platform | 9.5.7 | |||
| Application | Hcltech | Bigfix Platform | 9.5.6 | |||
| Application | Hcltech | Bigfix Platform | 9.5.5 | |||
| Application | Hcltech | Bigfix Platform | 9.5.3 | |||
| Application | Hcltech | Bigfix Platform | 9.5.2 | |||
| Application | Hcltech | Bigfix Platform | 9.5.15 | |||
| Application | Hcltech | Bigfix Platform | 9.5.14 | |||
| Application | Hcltech | Bigfix Platform | 9.5.13 | |||
| Application | Hcltech | Bigfix Platform | 9.5.12 | |||
| Application | Hcltech | Bigfix Platform | 9.5.11 | |||
| Application | Hcltech | Bigfix Platform | 9.5.10 | |||
| Application | Hcltech | Bigfix Platform | 9.5 | |||
| Application | Hcltech | Bigfix Platform | 9.2.19 | |||
| Application | Hcltech | Bigfix Platform | 9.2 | |||
| Application | Hcltech | Bigfix Platform | 9.0.0 | |||
| Application | Hcltech | Bigfix Platform | 10.0.2 |