CVE-2025-31982

Published: Mag 06, 2026 Last Modified: Mag 06, 2026

ExploitDB:

Other exploit source:

Google Dorks:

LOW 3,7

Source: [email protected]

Attack Vector: network

Attack Complexity: high

Privileges Required: low

User Interaction: required

Scope: unchanged

Confidentiality: low

Integrity: none

Availability: low

Description

AI Translation Available

HCL BigFix Service Management (SM) had directories that were not linked or publicly visible but could be accessed directly. This could allow an increased risk of information disclosure or misuse of sensitive functionality.

200

Exposure of Sensitive Information to an Unauthorized Actor

Draft

Abstraction: Class Structure: Simple

Common Consequences

Security Scopes Affected:

Confidentiality

Potential Impacts:

Read Application Data

Applicable Platforms

Technologies: Mobile, Not Technology-Specific, Web Based

Likelihood of Exploit: High

View CWE Details

https://support.hcl-software.com/csm?id=kb_article&sysparm_…

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0128144

CVE-2025-31982

Description

Exposure of Sensitive Information to an Unauthorized Actor

Common Consequences

Applicable Platforms

Iscriviti alla newsletter