Skip to main content

HCL BigFix Service Management EUVDEUVD-2025-209705

| CVE-2025-31974 LOW
Initialization of a Resource with an Insecure Default (CWE-1188)
2026-05-06 HCL
3.9
CVSS 3.1 · NVD

Severity by source

NVD PRIMARY
3.9 LOW
AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:L

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:L
Attack Vector
Network
Attack Complexity
High
Privileges Required
High
User Interaction
Required
Scope
Unchanged
Confidentiality
Low
Integrity
Low
Availability
Low

Lifecycle Timeline

1
Analysis Generated
May 06, 2026 - 19:00 vuln.today

DescriptionCVE.org

HCL BigFix Service Management (SM) is susceptible to a Root File System Not Mounted as Read-Only. An improperly configured root file system may allow

unintended modifications to critical system components, potentially increasing the risk of system compromise or unauthorized changes.

AnalysisAI

HCL BigFix Service Management is vulnerable to improper root filesystem configuration, allowing high-privileged authenticated users with user interaction to make unauthorized modifications to critical system components. The vulnerability requires administrative privileges and user consent (CVSS:3.1/AV:N/AC:H/PR:H/UI:R), resulting in limited confidentiality, integrity, and availability impacts. No active exploitation has been publicly reported.

Technical ContextAI

The vulnerability stems from CWE-1188 (Initialization with Hard-Coded Network Resource Configuration Data), which in this context manifests as a root filesystem not being mounted as read-only. This misconfiguration violates security hardening best practices where critical system directories should be protected from unauthorized modifications. The issue affects HCL BigFix Service Management across all versions in the cpe:2.3:a:hcl_software:bigfix_service_management_(sm) namespace, suggesting a systemic configuration issue rather than a code defect in a specific component or library.

RemediationAI

Organizations should apply the guidance provided in HCL support article KB0128144 at https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0128144, which addresses the improper root filesystem configuration. The primary remediation is to ensure the root filesystem is mounted as read-only through proper storage and mount configuration during deployment or reconfiguration of BigFix Service Management. Where applicable, enable filesystem integrity monitoring (such as AIDE or Tripwire) to detect unauthorized modifications to critical system components. Alternatively, use containerized or immutable deployment models that inherently enforce read-only root filesystems and reduce the attack surface for post-deployment modifications.

CVE-2024-30151 HIGH
8.3 May 06

HCL BigFix Service Management (SX) is affected by a Broken Access Control vulnerability leading to privilege escalation.

CVE-2025-31976 HIGH
7.5 May 06

Credential exposure in HCL BigFix Service Management (SM) version 23 leaves credentials insufficiently protected for a b

CVE-2025-31960 MEDIUM
5.3 May 06

HCL BigFix Service Management (SM) leaks sensitive information through improper error handling in its reporting module.

CVE-2025-31981 MEDIUM
5.3 Apr 21

HCL BigFix Service Management Discovery accepts unencrypted HTTP traffic on port 80, allowing network-adjacent attackers

CVE-2025-52613 MEDIUM
4.6 May 06

HCL BigFix Service Management (SM) contains an insecure or outdated WSGI server implementation that exposes the applicat

CVE-2025-31978 MEDIUM
4.3 May 06

HCL BigFix Service Management fails to sanitize spreadsheet data (CSV, XLS, XLSX) before export, allowing authenticated

CVE-2025-31984 LOW
3.7 May 06

HCL BigFix Service Management lacks secure X-Content-Type-Options HTTP headers, allowing browsers to perform MIME-type s

CVE-2025-31958 LOW
3.7 Apr 21

HTTP request smuggling in HCL BigFix Service Management allows remote unauthenticated attackers to exploit HTTP parsing

CVE-2025-31982 LOW
3.7 May 06

HCL BigFix Service Management contains unauthenticated-accessible directories that are not linked in the user interface

CVE-2025-31983 LOW
3.7 May 06

HCL BigFix Service Management (SM) contains a Content Security Policy (CSP) header misconfiguration that enables cross-s

CVE-2025-31959 LOW
3.5 May 06

HCL BigFix Service Management fails to strip EXIF metadata from uploaded images, allowing authenticated users to inadver

CVE-2025-31957 LOW
2.6 May 06

HCL BigFix Service Management (SM) contains a cross-site request forgery (CSRF) vulnerability that allows authenticated

Share

EUVD-2025-209705 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy