CVE-2025-52613

MEDIUM

4.6

Beschreibung

HCL BigFix Service Management (SM) is affected by use of a vulnerable WSGI Server was identified. Deploying an outdated or insecure WSGI server may expose the application to known security weaknesses, potentially increasing the risk of exploitation and unauthorized access.

CVE Details

CVSS v3.1 Bewertung4.6

SchweregradMEDIUM

CVSS VektorCVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

AngriffsvektorADJACENT_NETWORK

KomplexitatHIGH

Erforderliche PrivilegienLOW

BenutzerinteraktionNONE

Veroffentlicht5/6/2026

Zuletzt geandert5/7/2026

Quellenvd

Honeypot-Sichtungen0

Betroffene Produkte

hcltech:bigfix_service_management

Schwachen (CWE)

CWE-200

Referenzen

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0128144(psirt@hcl.com)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.