exploitDog

CVE-2024-42194

Опубликовано: 17 дек. 2024

Источник: nvd

CVSS3: 3.1

EPSS Низкий

Описание

An improper handling of insufficient permissions or privileges affects HCL BigFix Inventory. An attacker having access via a read-only account can possibly change certain configuration parameters by crafting a specific REST API call.

Ссылки

https://https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0118212

EPSS

Процентиль: 20%

0.00066

Низкий

3.1 Low

CVSS3

Дефекты

CWE-280

Связанные уязвимости

GHSA-cr9c-4pg9-32j3

CVSS3: 3.1

github

около 1 года назад

An improper handling of insufficient permissions or privileges affects HCL BigFix Inventory. An attacker having access via a read-only account can possibly change certain configuration parameters by crafting a specific REST API call.

EPSS

Процентиль: 20%

0.00066

Низкий

3.1 Low

CVSS3

Дефекты

CWE-280