CNNVD-202508-1883 Information

CNNVD ID

CNNVD-202508-1883

Related CVE

CVE-2025-52621

• CNNVD Published: 2025-08-15

Description (Chinese)

HCL BigFix SaaS Authentication Service是印度HCL公司的一个端点管理平台。 HCL BigFix SaaS Authentication Service存在安全漏洞，该漏洞源于未验证Origin标头值，可能导致缓存投毒。

Description (English)

HCL BigFix SaaS Administration Service is an end-point management platform for HCL India. HCL BigFix SaaS Administration Service has a security loophole, which originates from the failure to validate the Origin header, which could lead to a cache of poisoning.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

HCL

Published

2025-08-15

Last Modified

2026-02-24

References

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0123330 https://nvd.nist.gov/vuln/detail/CVE-2025-52621

Patch

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0123330