CNNVD-202601-1264 Information
Jan 07, 2026
cve
CNNVD ID
CNNVD-202601-1264
Related CVE
- CNNVD Published: 2026-01-07
Description (Chinese)
HCL BigFix IVR是印度HCL公司的一款漏洞修复工具。 HCL BigFix IVR 4.2版本存在安全漏洞,该漏洞源于Web UI身份验证组件会话过期不足,可能导致未经授权访问受保护API端点。
Description (English)
HCL BigFix IVR is a gap repair tool for HCL India. The HCL BigFix IVR 4.2 version has a security loophole, which stems from the expired session of the Web UI authentication component, which may lead to unauthorized access to the protected API endpoint.
Hazard Level
Critical
Vulnerability Type
其他
Affected Vendor
HCL
Published
2026-01-07
Last Modified
2026-02-24
References
https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0127753
Patch
https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0127753
Share on: