VYPR
Medium severity5.3NVD Advisory· Published Apr 3, 2024· Updated Jun 17, 2026

CVE-2024-23540

CVE-2024-23540

Description

The HCL BigFix Inventory server is vulnerable to path traversal which enables an attacker to read internal application files from the Inventory server. The BigFix Inventory server does not properly restrict the served static file.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.