Name of the Vulnerable Software and Affected Versions:

HCL BigFix SM (affected versions not specified)

Description:

A File Upload Validation Bypass flaw exists in HCL BigFix SM, where the application does not properly enforce file type restrictions during the upload process. This allows an attacker to upload malicious or unauthorized files, such as scripts, executables, or web shells, by bypassing validation mechanisms.

Recommendations:

At the moment, there is no information about a newer version that contains a fix for this vulnerability.