CVE-2025-31963 | HCL BigFix IVR 4.2 Local Setup Interface cross-site request forgery (KB0127753)

Inserito da Angelo Barbosa | Gen 7, 2026 | CVE

A vulnerability classified as problematic has been found in HCL BigFix IVR 4.2. Affected is an unknown function of the component Local Setup Interface. This manipulation causes cross-site request forgery.

This vulnerability is tracked as CVE-2025-31963. The attack is possible to be carried out remotely. No exploit exists.

CVE-2025-31963 | HCL BigFix IVR 4.2 Local Setup Interface cross-site request forgery (KB0127753)

Post correlati

CVE-2024-41940 | Siemens SINEC NMS up to 2.x os command injection (ssa-784301)

CVE-2023-23639 | MainWP Staging Extension Plugin up to 4.0.3 on WordPress authorization

CVE-2024-53269 | Envoy up to 1.30.7/1.31.3/1.32.1 IP Configuration control flow (GHSA-mfqp-7mmj-rm53)

CVE-2024-12426 | Document Foundation LibreOffice up to 24.8.3 Environmental Variable information disclosure