Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability identified in BigFix Server version 9.5.12.68, allowing for potential data exfiltration. This XSS vulnerability is in the Gather Status Report, which is served by the BigFix Relay.
References
Link | Resource |
---|---|
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0109376 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: HCL
Published: 2023-12-21T22:13:47.339Z
Updated: 2023-12-21T22:13:47.339Z
Reserved: 2023-07-06T16:11:42.472Z
Link: CVE-2023-37520
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-12-21T23:15:08.453
Modified: 2023-12-29T19:28:51.770
Link: CVE-2023-37520
JSON object: View
Redhat Information
No data.
CWE