CVE-2025-31974

LOW

3.9

Descricao

HCL BigFix Service Management (SM) is susceptible to a Root File System Not Mounted as Read-Only. An improperly configured root file system may allow unintended modifications to critical system components, potentially increasing the risk of system compromise or unauthorized changes.

Detalhes CVE

Pontuacao CVSS v3.13.9

SeveridadeLOW

Vetor CVSSCVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:L

Vetor de ataqueNETWORK

ComplexidadeHIGH

Privilegios necessariosHIGH

Interacao do usuarioREQUIRED

Publicado5/6/2026

Ultima modificacao5/6/2026

Fontenvd

Avistamentos honeypot0

Fraquezas (CWE)

CWE-1188

Referencias

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0128144(psirt@hcl.com)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.