Hcl Bigfix Inventory
Approved changes feed: RSS · Atom
cpe:2.3:a:n/a:hcl_bigfix_inventory:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | N/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78) |
|---|---|
| Product | Hcl Bigfix Inventory (96951d5b-645a-5b72-b03e-c5ff073d148d) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-14254 |
vulnerable | 2026-06-08 05:19:22.803750 |
Details available
TLS-RSA cipher suites are not disabled in HCL BigFix Inventory up to v10.0.2. If TLS 2.0 and secure ciphers are not enabled then an attacker can passively record traffic and later decrypt it.
Published: 2020-12-16T14:07:42.000Z
Updated: 2024-08-04T12:39:36.218Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-14248 |
vulnerable | 2026-06-08 05:19:22.797075 |
Details available
BigFix Inventory up to v10.0.2 does not set the secure flag for the session cookie in an https session, which can cause the cookie to be sent in http requests and make it easier for remote attackers to capture this cookie.
Published: 2020-12-16T14:11:34.000Z
Updated: 2024-08-04T12:39:36.278Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.