Unrated severityNVD Advisory· Published Jul 18, 2024· Updated Oct 30, 2024
HCL BigFix Compliance is affected by a missing X-Frame-Options Header vulnerability
CVE-2024-30126
Description
HCL BigFix Compliance is affected by a missing X-Frame-Options HTTP header which can allow an attacker to create a malicious website that embeds the target website in a frame or iframe, tricking users into performing actions on the target website without their knowledge.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: 2.0.x
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.