CVE-2023-37521

Low

2.3/10

Summary

HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower can sometimes include sensitive information in a query string which could allow an attacker to execute a malicious attack.

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: HIGH
Confidentiality Impact: LOW
Availability Impact: NONE

References

Advisory Timeline

Published Jan 16, 2024

CVE-2023-37521

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS