HCL BigFix Service Management (SM) is susceptible to a Root File System Not Mounted as Read-Only
CVE-2025-31974

3.9LOW

Key Information:

What is CVE-2025-31974?

HCL BigFix Service Management (SM) is susceptible to a Root File System Not Mounted as Read-Only. An improperly configured root file system may allow

unintended modifications to critical system components, potentially increasing the risk of system compromise or unauthorized changes.

BigFix Service Management (SM) 23

Score:

3.9

Severity:

LOW

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

CVE-2025-31974 Data