Vendor

HCL

3 briefs RSS

HCL BigFix Vulnerability Allows Data Manipulation and Cross-Site Scripting

A remote, anonymous attacker can exploit a vulnerability in HCL BigFix to manipulate data and conduct a cross-site scripting attack.

BigFix vulnerability xss data manipulation

2r 1t May 15, 2026

medium advisory

HCL BigFix WebUI Information Disclosure Vulnerabilities

2 rules 1 TTP

A remote, authenticated attacker can exploit multiple vulnerabilities in HCL BigFix WebUI applications to disclose sensitive information.

BigFix WebUI information-disclosure webui hcl

2r 1t May 11, 2026

high advisory

Multiple Vulnerabilities in HCL BigFix

2 rules 3 TTPs

Multiple vulnerabilities in HCL BigFix could allow an attacker to disclose information, execute arbitrary code, perform a denial of service attack, and manipulate files.

BigFix vulnerability code-execution dos information-disclosure

2r 3t May 11, 2026