CNNVD-202601-1263 Information
Jan 07, 2026
cve
CNNVD ID
CNNVD-202601-1263
Related CVE
- CNNVD Published: 2026-01-07
Description (Chinese)
HCL BigFix IVR是印度HCL公司的一款漏洞修复工具。 HCL BigFix IVR 4.2版本存在安全漏洞,该漏洞源于本地设置接口组件身份验证不当且缺少CSRF保护,可能导致未经授权的配置更改。
Description (English)
HCL BigFix IVR is a gap repair tool for HCL India. The HCL BigFix IVR 4.2 version has a security loophole, which stems from the inappropriate local authentication of interface components and the lack of CSRF protection, which may lead to unauthorized configuration changes.
Hazard Level
Critical
Vulnerability Type
其他
Affected Vendor
HCL
Published
2026-01-07
Last Modified
2026-02-24
References
https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0127753
Patch
https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0127753
Share on: