CVE-2025-31977

MEDIUM

5.3

Beschreibung

HCL BigFix SM is affected by cryptographic weakness due to weak or outdated encryption algorithms. An attacker with network access could exploit this weakness to decrypt or manipulate encrypted communications under certain conditions.

CVE Details

CVSS v3.1 Bewertung5.3

SchweregradMEDIUM

CVSS VektorCVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

AngriffsvektorNETWORK

KomplexitatHIGH

Erforderliche PrivilegienLOW

BenutzerinteraktionNONE

Veroffentlicht8/28/2025

Zuletzt geandert10/29/2025

Quellenvd

Honeypot-Sichtungen0

Betroffene Produkte

hcltech:bigfix_service_management

Schwachen (CWE)

CWE-311

Referenzen

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0123631(psirt@hcl.com)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.