Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability identified in BigFix Server version 9.5.12.68, allowing for potential data exfiltration. This XSS vulnerability is in the Gather Status Report, which is served by the BigFix Relay.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: HCL

Published: 2023-12-21T22:13:47.339Z

Updated: 2024-08-02T17:16:30.415Z

Reserved: 2023-07-06T16:11:42.472Z

Link: CVE-2023-37520

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2023-12-21T23:15:08.453

Modified: 2023-12-29T19:28:51.770

Link: CVE-2023-37520

cve-icon Redhat

No data.