HCL BigFix Insights for Vulnerability Remediation (IVR) is vulnerable to improper input validation
CVE-2022-44756

6.5MEDIUM

Key Information:

Vendor: HCL Software
Status: BigFix Insights for Vulnerability Remediation
Vendor: CVE Published:; 21 December 2022

Summary

Insights for Vulnerability Remediation (IVR) is vulnerable to improper input validation. This may lead to information disclosure. This requires privileged access. 

Affected Version(s)

BigFix Insights for Vulnerability Remediation <= v2.0

References

https://support.hcltechsw.com/csm?id=kb_article&sysparm_a...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 21, 2022
Vulnerability Reserved
Nov 4, 2022