Security Advisory

CVE-2025-31964

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-07 07:18:27

Last updated 2026-01-07 16:12:56

Assigner HCL

State PUBLISHED

Description

Improper service binding configuration in internal service components in HCL BigFix IVR version 4.2 allows a privileged attacker to impact service availability via exposure of administrative services bound to external network interfaces instead of the local authentication interface.

← Browse all CVEs View on cve.org ↗