Unrated severityNVD Advisory· Published Dec 20, 2022· Updated Apr 16, 2025
HCL BigFix WebUI is affected by a missing-permission-check vulnerability
CVE-2022-38655
Description
BigFix WebUI non-master operators are missing controls that prevent them from being able to modify the relevance of fixlets or to deploy fixlets from the BES Support external site.
Affected products
1- Range: 20
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.