BigFix Remote Control Server WebUI

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2025-31965	HCL Software BigFix Remote Control Server WebUI	Hig	0.53	8.2	0.00		Jul 29, 2025	Improper access restrictions in HCL BigFix Remote Control Server WebUI (versions 10.1.0.0248 and lower) allow non-admin users to view unauthorized information on certain web pages.
CVE-2026-21785	HCL Software BigFix Remote Control Server WebUI	Med	0.26	4.0	—		May 27, 2026	A misconfigured Content Security Policy (CSP) in HCL BigFix Remote Control Server WebUI (versions 10.1.0.0442 and earlier) fails to define directives without fallbacks, allowing attackers to bypass intended security restrictions and load unauthorized resources.

CVE-2025-31965HigJul 29, 2025
HCL Software
BigFix Remote Control Server WebUI
risk 0.53cvss 8.2epss 0.00
Improper access restrictions in HCL BigFix Remote Control Server WebUI (versions 10.1.0.0248 and lower) allow non-admin users to view unauthorized information on certain web pages.
CVE-2026-21785MedMay 27, 2026
HCL Software
BigFix Remote Control Server WebUI
risk 0.26cvss 4.0epss —
A misconfigured Content Security Policy (CSP) in HCL BigFix Remote Control Server WebUI (versions 10.1.0.0442 and earlier) fails to define directives without fallbacks, allowing attackers to bypass intended security restrictions and load unauthorized resources.