CVE-2024-30117

A dynamic search for a prerequisite library could allow the possibility for an attacker to replace the correct file under some circumstances.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:hcltech:bigfix_platform:*:*:*:*:*:*:*:*
cpe:2.3:a:hcltech:bigfix_platform:*:*:*:*:*:*:*:*
cpe:2.3:a:hcltech:bigfix_platform:*:*:*:*:*:*:*:*

History

17 Oct 2024, 21:01

Type Values Removed Values Added
First Time Hcltech
Hcltech bigfix Platform
References () https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0116659 - () https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0116659 - Vendor Advisory
CVSS v2 : unknown
v3 : 2.5
v2 : unknown
v3 : 5.3
CPE cpe:2.3:a:hcltech:bigfix_platform:*:*:*:*:*:*:*:*

15 Oct 2024, 12:57

Type Values Removed Values Added
Summary
  • (es) Una búsqueda dinámica de una librería de requisitos previos podría permitir que un atacante reemplace el archivo correcto en algunas circunstancias.

14 Oct 2024, 23:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-10-14 23:15

Updated : 2024-10-17 21:01


NVD link : CVE-2024-30117

Mitre link : CVE-2024-30117

CVE.ORG link : CVE-2024-30117


JSON object : View

Products Affected

hcltech

  • bigfix_platform
CWE
CWE-427

Uncontrolled Search Path Element