CVE-2025-31977 | THREATINT

Description

HCL BigFix SM is affected by cryptographic weakness due to weak or outdated encryption algorithms. An attacker with network access could exploit this weakness to decrypt or manipulate encrypted communications under certain conditions.

PUBLISHED Reserved 2025-04-01 | Published 2025-08-28 | Updated 2025-08-28 | Assigner HCL

MEDIUM: 5.3CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Problem types

CWE-311 Missing Encryption of Sensitive Data

Product status

Default status

unaffected

affected

References

support.hcl-software.com/...rticle&sysparm_article=KB0123631

cve.org (CVE-2025-31977)

nvd.nist.gov (CVE-2025-31977)

Download JSON