Hcltech Bigfix Webui Insights — known CVE vulnerabilities
Every CVE whose affected-product data names Hcltech Bigfix Webui Insights, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2025-15633 — CVSS 6.5 (medium): An improper authorization vulnerability in HCL BigFix WebUI allows an authenticated user without Master Operator privileges to access…
CVE-2025-15634 — CVSS 4.3 (medium): A missing authorization vulnerability in HCL BigFix WebUI allows an authenticated user without proper permissions to view sensitive…
CVE-2023-23344 — CVSS 3.0 (low): A permission issue in BigFix WebUI Insights site version 14 allows an authenticated, unprivileged operator to access an administrator page.