exploitDog

CVE-2024-30141

Опубликовано: 07 нояб. 2024

Источник: nvd

CVSS3: 4.7

EPSS Низкий

Описание

HCL BigFix Compliance is vulnerable to the generation of error messages containing sensitive information. Detailed error messages can provide enticement information or expose information about its environment, users, or associated data.

Ссылки

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0117197
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:hcltech:bigfix_compliance:2.0.11:*:*:*:*:*:*:*

EPSS

Процентиль: 33%

0.00132

Низкий

4.7 Medium

CVSS3

Дефекты

CWE-209

Связанные уязвимости

GHSA-742p-rh42-xg84

CVSS3: 4.7

github

больше 1 года назад

HCL BigFix Compliance is vulnerable to the generation of error messages containing sensitive information. Detailed error messages can provide enticement information or expose information about its environment, users, or associated data.

EPSS

Процентиль: 33%

0.00132

Низкий

4.7 Medium

CVSS3

Дефекты

CWE-209