CVE-2025-31951

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

HCL BigFix RunBookAI is affected by a Unvalidated Command Input / Potential Command Smuggling vulnerability. A flaw in a component's input handling was identified that could permit unauthorized command execution.

Fix

Command Injection

UI Misrepresentation of Critical Information

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-77CWE-351CWE-451

Related Identifiers

CVE-2025-31951

Affected Products

Bigfix Runbookai

CVE-2025-31951

Weakness Enumeration

Related Identifiers

Affected Products

References · 2