Ibm · Bigfix Platform · CVE-2020-4095
**Name of the Vulnerable Software and Affected Versions**
BigFix Platform (affected versions not specified)
**Description**
The issue allows an attacker with administrative privileges to extract clear text credentials from the system's memory. These credentials can then be used to gain further access to the environment. Applying the principle of least privilege to BigFix deployments is recommended, limiting administrative access.
**Recommendations**
Apply the principle of least privilege to all BigFix deployments, limiting administrative access to minimize the risk of exploitation.