Description
HCL BigFix Service Management (SM) is susceptible to a Root File System Not Mounted as Read-Only. An improperly configured root file system may allow

unintended modifications to critical system components, potentially increasing the risk of system compromise or unauthorized changes.
Published: 2026-05-06
Score: 3.9 Low
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability arises because HCL BigFix Service Management’s root file system is not mounted as read‑only. This configuration flaw can allow attackers to modify critical system components, potentially leading to system compromise or unauthorized changes. The weakness is identified as CWE-1188. Based on the description, it is inferred that the vulnerability can be exploited by changing file permissions or mounting options during operation, though the exact attacker capabilities are not explicitly stated.

Affected Systems

The affected product is HCL Software’s BigFix Service Management (SM). No specific version information is provided in the advisory, so administrators should verify that their installations are running the product and that no version limitation applies.

Risk and Exploitability

The CVSS score of 3.9 indicates low severity. Because the flaw involves a writable root file system, the likely attack vector is a local or privileged attacker who can manipulate mounting options or modify system files. The lack of an EPSS score and absence from the CISA KEV catalog suggest a low likelihood of exploitation. Nonetheless, the possibility of unauthorized changes to critical components warrants monitoring and ensuring proper mount settings.

Generated by OpenCVE AI on May 6, 2026 at 21:22 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Ensure the root file system is mounted as read‑only on all systems running BigFix Service Management by updating /etc/fstab or the bootloader configuration.
  • Apply the latest BigFix Service Management patch or update when one becomes available to address the mounting issue or related configuration problems.
  • Deploy file integrity monitoring or audit tools to detect any unauthorized changes to critical system components and generate alerts.

Generated by OpenCVE AI on May 6, 2026 at 21:22 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 06 May 2026 19:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 06 May 2026 18:30:00 +0000

Type Values Removed Values Added
Description HCL BigFix Service Management (SM) is susceptible to a Root File System Not Mounted as Read-Only. An improperly configured root file system may allow unintended modifications to critical system components, potentially increasing the risk of system compromise or unauthorized changes.
Title HCL BigFix Service Management (SM) is susceptible to a Root File System Not Mounted as Read-Only
Weaknesses CWE-1188
References
Metrics cvssV3_1

{'score': 3.9, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:L'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: HCL

Published:

Updated: 2026-05-06T18:32:13.506Z

Reserved: 2025-04-01T18:46:26.620Z

Link: CVE-2025-31974

cve-icon Vulnrichment

Updated: 2026-05-06T18:32:08.727Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-06T19:16:35.593

Modified: 2026-05-06T19:20:52.837

Link: CVE-2025-31974

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-06T21:30:12Z

Weaknesses