Vulnerabilities (CVE)

Filtered by vendor Hcltech Subscribe
Filtered by product Bigfix Osd Bare Metal Server
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-28016 1 Hcltech 1 Bigfix Osd Bare Metal Server 2024-11-21 N/A 3.1 LOW
Host Header Injection vulnerability in the HCL BigFix OSD Bare Metal Server version 311.12 or lower allows attacker to supply invalid input to cause the OSD Bare Metal Server to perform a redirect to an attacker-controlled domain.
CVE-2023-28006 1 Hcltech 1 Bigfix Osd Bare Metal Server 2024-11-21 N/A 7.0 HIGH
The OSD Bare Metal Server uses a cryptographic algorithm that is no longer considered sufficiently secure.
CVE-2023-23343 1 Hcltech 1 Bigfix Osd Bare Metal Server 2024-11-21 N/A 2.4 LOW
A clickjacking vulnerability in the HCL BigFix OSD Bare Metal Server version 311.12 or lower allows attacker to use transparent or opaque layers to trick a user into clicking on a button or link on another page to perform a redirect to an attacker-controlled domain.