CVE-2024-42212 Information

May 06, 2025 cve

Description

HCL BigFix Compliance is affected by an improper or missing SameSite attribute. This can lead to Cross-Site Request Forgery (CSRF) attacks where a malicious site could trick a user’s browser into making unintended requests using authenticated sessions.

Reference

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0120961

Share on: