Low severity3.5NVD Advisory· Published May 6, 2026· Updated May 7, 2026
CVE-2025-31959
CVE-2025-31959
Description
HCL BigFix Service Management (SM) application fails to strip EXIF metadata from uploaded images. This could lead to confidentiality and privacy risks if sensitive location information is unintentionally shared. .
Affected products
2cpe:2.3:a:hcltech:bigfix_service_management:23.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:hcltech:bigfix_service_management:23.0:*:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
1- support.hcl-software.com/csmnvdVendor Advisory
News mentions
0No linked articles in our index yet.