Security Advisory

CVE-2023-37525

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-28 19:58:49

Last updated 2026-01-29 18:11:32

Assigner HCL

State PUBLISHED

Description

A sensitive information disclosure in HCL BigFix Compliance allows a remote attacker to access files under the WEB-INF directory, which may contain Java class files and configuration information, leading to unauthorized access to application internals.

← Browse all CVEs View on cve.org ↗