VYPR
Unrated severityNVD Advisory· Published Dec 20, 2022· Updated Apr 16, 2025

HCL BigFix WebUI is affected by a missing-permission-check vulnerability

CVE-2022-38655

Description

BigFix WebUI non-master operators are missing controls that prevent them from being able to modify the relevance of fixlets or to deploy fixlets from the BES Support external site.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.