Skip to main content

HCL BigFix Service Management EUVDEUVD-2025-209702

| CVE-2025-52613 MEDIUM
Information Exposure (CWE-200)
2026-05-06 HCL GHSA-vrr6-hxxc-pgc8
4.6
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
4.6 MEDIUM
AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L
Attack Vector
Adjacent
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
Low
Availability
Low

Lifecycle Timeline

1
Analysis Generated
May 06, 2026 - 15:00 vuln.today

DescriptionCVE.org

HCL BigFix Service Management (SM) is affected by use of a vulnerable WSGI Server was identified. Deploying an outdated or insecure WSGI server may expose the application to known security weaknesses, potentially increasing the risk of exploitation and unauthorized access.

AnalysisAI

HCL BigFix Service Management (SM) contains an insecure or outdated WSGI server implementation that exposes the application to known security weaknesses. Authenticated local attackers with high complexity conditions can achieve limited information disclosure and integrity compromise (CVSS 4.6). No active exploitation or public POC identified at time of analysis.

Technical ContextAI

WSGI (Web Server Gateway Interface) is a standard Python web application interface specification. The vulnerability stems from deploying an outdated or misconfigured WSGI server (CWE-200: Exposure of Sensitive Information to an Unauthorized Actor) within BigFix Service Management's application stack. Vulnerable WSGI servers may lack critical security patches addressing authentication bypass, input validation flaws, or information exposure. The affected product is identified by CPE cpe:2.3:a:hcl:bigfix_service_management_(sm):*:*:*:*:*:*:*:*, indicating all versions are potentially affected until patched.

RemediationAI

Update HCL BigFix Service Management to a patched version that includes a secure, current WSGI server implementation. Consult HCL support KB article KB0128144 for exact patched version numbers and upgrade procedures. As an interim compensating control, restrict network access to BigFix SM administration interfaces to trusted internal networks only (AV:A mitigation), requiring adjacent-network or physically proximate access to reduce remote exploitation risk. Disable unnecessary features or protocols if the WSGI server exposes unneeded endpoints. Review and enforce strong authentication policies for all service accounts accessing BigFix SM. Monitor authentication logs for suspicious activity. If patched versions are not yet available, consider applying security hardening recommendations from HCL's advisory and evaluating alternative WSGI server implementations if permitted by the architecture.

CVE-2025-31976 HIGH
7.5 May 06

Credential exposure in HCL BigFix Service Management (SM) version 23 leaves credentials insufficiently protected for a b

CVE-2025-31960 MEDIUM
5.3 May 06

HCL BigFix Service Management (SM) leaks sensitive information through improper error handling in its reporting module.

CVE-2025-31981 MEDIUM
5.3 Apr 21

HCL BigFix Service Management Discovery accepts unencrypted HTTP traffic on port 80, allowing network-adjacent attackers

CVE-2025-31978 MEDIUM
4.3 May 06

HCL BigFix Service Management fails to sanitize spreadsheet data (CSV, XLS, XLSX) before export, allowing authenticated

CVE-2025-31974 LOW
3.9 May 06

HCL BigFix Service Management is vulnerable to improper root filesystem configuration, allowing high-privileged authenti

CVE-2025-31984 LOW
3.7 May 06

HCL BigFix Service Management lacks secure X-Content-Type-Options HTTP headers, allowing browsers to perform MIME-type s

CVE-2025-31958 LOW
3.7 Apr 21

HTTP request smuggling in HCL BigFix Service Management allows remote unauthenticated attackers to exploit HTTP parsing

CVE-2025-31982 LOW
3.7 May 06

HCL BigFix Service Management contains unauthenticated-accessible directories that are not linked in the user interface

CVE-2025-31983 LOW
3.7 May 06

HCL BigFix Service Management (SM) contains a Content Security Policy (CSP) header misconfiguration that enables cross-s

CVE-2025-31959 LOW
3.5 May 06

HCL BigFix Service Management fails to strip EXIF metadata from uploaded images, allowing authenticated users to inadver

CVE-2025-31957 LOW
2.6 May 06

HCL BigFix Service Management (SM) contains a cross-site request forgery (CSRF) vulnerability that allows authenticated

CVE-2025-31975 LOW
2.6 May 06

HCL BigFix Service Management exposes server banner information containing software versions and system details accessib

Share

EUVD-2025-209702 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy