Home

Description

Improper management of Content Security Policy in HCL BigFix Remote Control Lite Web Portal (versions 10.1.0.0326 and lower) may allow the execution of malicious code in web pages.

PUBLISHED Reserved 2025-09-22 | Published 2025-12-17 | Updated 2025-12-17 | Assigner HCL




MEDIUM: 4.7CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N

Problem types

CWE-1021 Improper Restriction of Rendered UI Layers or Frames

CWE-693 Protection Mechanism Failure

Product status

Default status
unaffected

<= 10.1.0.0326
affected

References

support.hcl-software.com/...rticle&sysparm_article=KB0127332

cve.org (CVE-2025-59849)

nvd.nist.gov (CVE-2025-59849)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.