Insights for Vulnerability Remediation
by HCL Software
CVEs (4)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-44757 | 0.00 | — | 0.00 | Oct 11, 2023 | BigFix Insights for Vulnerability Remediation (IVR) uses weak cryptography that can lead to credential exposure. An attacker could gain access to sensitive information, modify data in unexpected ways, etc. | |||
| CVE-2022-44758 | 0.00 | — | 0.00 | Oct 11, 2023 | BigFix Insights/IVR fixlet uses improper credential handling within certain fixlet content. An attacker can gain access to information that is not explicitly authorized. | |||
| CVE-2022-44756 | 0.00 | — | 0.00 | Dec 19, 2022 | Insights for Vulnerability Remediation (IVR) is vulnerable to improper input validation. This may lead to information disclosure. This requires privileged access. | |||
| CVE-2022-42454 | 0.00 | — | 0.00 | Dec 19, 2022 | Insights for Vulnerability Remediation (IVR) is vulnerable to man-in-the-middle attacks that may lead to information disclosure. This requires privileged network access. |
- CVE-2022-44757Oct 11, 2023risk 0.00cvss —epss 0.00
BigFix Insights for Vulnerability Remediation (IVR) uses weak cryptography that can lead to credential exposure. An attacker could gain access to sensitive information, modify data in unexpected ways, etc.
- CVE-2022-44758Oct 11, 2023risk 0.00cvss —epss 0.00
BigFix Insights/IVR fixlet uses improper credential handling within certain fixlet content. An attacker can gain access to information that is not explicitly authorized.
- CVE-2022-44756Dec 19, 2022risk 0.00cvss —epss 0.00
Insights for Vulnerability Remediation (IVR) is vulnerable to improper input validation. This may lead to information disclosure. This requires privileged access.
- CVE-2022-42454Dec 19, 2022risk 0.00cvss —epss 0.00
Insights for Vulnerability Remediation (IVR) is vulnerable to man-in-the-middle attacks that may lead to information disclosure. This requires privileged network access.