PT-2026-33976 · Hclsoftware · Bigfix Service Management
Published
2026-04-21
·
Updated
2026-04-21
·
CVE-2025-31958
CVSS v3.1
3.7
Low
| AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N |
HCL BigFix Service Management is susceptible to HTTP Request Smuggling. HTTP request smuggling vulnerabilities arise when websites route HTTP requests through web servers with inconsistent HTTP parsing. HTTP Smuggling exploits inconsistencies in request parsing between front-end and back-end servers, allowing attackers to bypass security controls and perform attacks like cache poisoning or request hijacking.
Fix
HTTP Request/Response Smuggling
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Bigfix Service Management