CVE-2024-42213
HCL BigFix Compliance is affected by inclusion of temporary files left in the production environment
HCL BigFix Compliance is affected by inclusion of temporary files left in the production environment. An attacker might gain access to these files by indexing or retrieved via predictable URLs or misconfigured permissions, leading to information disclosure.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Affected products
HCL Software · HCL BigFix ComplianceWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →