- Description
- BigFix Patch Download Plug-ins are affected by an insecure package which is susceptible to XML injection attacks. This allows an attacker to exploit this vulnerability by injecting malicious XML content, which can lead to various issues including denial of service and unauthorized access.
- Source
- psirt@hcl.com
- NVD status
- Received
CVSS 3.1
- Type
- Secondary
- Base score
- 2.5
- Impact score
- 1.4
- Exploitability score
- 0.8
- Vector string
- CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:N/A:N
- Severity
- LOW
- psirt@hcl.com
- CWE-611
- Hype score
- Not currently trending
CVE-2024-42185 BigFix Patch Download Plug-ins are affected by an insecure package which is susceptible to XML injection attacks. This allows an attacker to exploit this vulnerabili… https://t.co/nVOWWGl8Rh
@CVEnew
23 Jan 2025
132 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-42185 XML Injection Vulnerability in BigFix Patch Download Plug-ins https://t.co/gBgxbiRdf3 Vulnerability Alert Subscriptions: https://t.co/hrQhy5uz4x
@VulmonFeeds
23 Jan 2025
11 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes