PT-2025-31222 · Hcl · Hcl Bigfix Remote Control Server Webui

Published

2025-07-29

·

Updated

2025-07-29

·

CVE-2025-31965

Report an issue
CVSS v3.1
8.2
VectorAV:N/AC:L/PR:L/UI:R/S:C/C:L/I:H/A:L

Name of the Vulnerable Software and Affected Versions:

HCL BigFix Remote Control Server WebUI versions 10.1.0.0248 and lower

Description:

Improper access restrictions in the WebUI allow non-admin users to view unauthorized information on certain web pages.

Recommendations:

Update HCL BigFix Remote Control Server WebUI to a version higher than 10.1.0.0248.

Fix

Weakness Enumeration

CWE-305

Related Identifiers

CVE-2025-31965

Affected Products

Hcl Bigfix Remote Control Server Webui