Hcltech Bigfix Modern Client Management — known CVE vulnerabilities
Every CVE whose affected-product data names Hcltech Bigfix Modern Client Management, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVE-2023-28025 — CVSS 6.6 (medium): Due to this vulnerability, the Master operator could potentially incorporate an SVG tag into HTML, leading to an alert pop-up displaying a…
CVE-2025-0276 — CVSS 6.5 (medium): HCL BigFix Modern Client Management (MCM) 3.3 and earlier are vulnerable to certain insecure directives within the Content Security Policy…
CVE-2025-0277 — CVSS 6.5 (medium): HCL BigFix Mobile 3.3 and earlier are vulnerable to certain insecure directives within the Content Security Policy (CSP). An attacker could…
CVE-2025-0274 — CVSS 5.3 (medium): HCL BigFix Modern Client Management (MCM) 3.3 and earlier is affected by improper access control. Unauthorized users can access a small…
CVE-2025-0275 — CVSS 5.3 (medium): HCL BigFix Mobile 3.3 and earlier is affected by improper access control. Unauthorized users can access a small subset of endpoint actions…