Medium severity5.3NVD Advisory· Published Apr 3, 2024· Updated Jun 17, 2026
CVE-2024-23540
CVE-2024-23540
Description
The HCL BigFix Inventory server is vulnerable to path traversal which enables an attacker to read internal application files from the Inventory server. The BigFix Inventory server does not properly restrict the served static file.
Affected products
1Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.