CVE-2024-42184

The BigFix Patch Download Plug-ins are affected by insecure support for the file URI scheme, which could allow a malicious operator to attempt to download files using the file:// URI scheme. This issue is related to the handling of URI schemes in the plug-ins. An exploit could be used to take advantage of this issue. The affected software is BigFix Patch Download Plug-ins, but the specific versions are not mentioned. More information about this issue can be found at the provided links, including https://t.co/DH8AVmf9LW and https://t.co/xhLrNnfyrO. #BigFix #PatchDownloadPlugins #InsecureURIScheme #FileURIScheme #LowSeverity #Exploit