216.73.216.133

CVE-2024-42213

· Published 05/05/2025 19:15 · Modified 05/05/2025 20:54

Labels: CVE-2024-42213 2025-05-05CVE-2024-42213CWE-531[email protected]

Essential information

Published
05/05/2025 19:15
Modified
05/05/2025 20:54
Author
Creator
CVSS
5.3 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CVSS metrics

Description

HCL BigFix Compliance is affected by inclusion of temporary files left in the production environment. An attacker might gain access to these files by indexing or retrieved via predictable URLs or misconfigured permissions, leading to information disclosure.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
hcl / bigfix compliance cpe:2.3:a:hcl:bigfix_compliance:*:*:*:*:*:*:*:*

References