CVE-2024-42187 | HCL BigFix Patch Management Download Plug-ins up to 1177 Download File path traversal (KB0118565)

Posted by Angelo Barbosa | Jan 23, 2025 | CVE

A vulnerability, which was classified as problematic, was found in HCL BigFix Patch Management Download Plug-ins up to 1177. Affected is an unknown function of the component Download File Handler. The manipulation leads to path traversal.

This vulnerability is traded as CVE-2024-42187. An attack has to be approached locally. There is no exploit available.

CVE-2024-42187 | HCL BigFix Patch Management Download Plug-ins up to 1177 Download File path traversal (KB0118565)

Related Posts

CVE-2024-7561 | Next Plugin up to 1.1.0 on WordPress code injection

CVE-2024-24134 | SourceCodester Online Food Menu 1.0 Update Menu Section Menu Name/Description cross site scripting

CVE-2024-5085 | Hash Form Plugin up to 1.1.0 on WordPress code injection

CVE-2023-7261 | Google Omaha prior 1.3.36.271 Local Privilege Escalation (Issue 400646)