HCL BigFix SaaS Authentication Service is affected by a... · CVE-2025-52618 · GitHub Advisory Database · GitHub

HCL BigFix SaaS Authentication Service is affected by a...

Moderate severity Unreviewed Published Aug 16, 2025 to the GitHub Advisory Database • Updated Aug 16, 2025

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

HCL BigFix SaaS Authentication Service is affected by a SQL injection vulnerability. The vulnerability allows potential attackers to manipulate SQL queries.

References

Published by the National Vulnerability Database

Aug 15, 2025

Published to the GitHub Advisory Database Aug 16, 2025

Last updated Aug 16, 2025

Severity

Moderate

/ 10

CVSS v3 base metrics

Attack vector

Network

Attack complexity

Low

Privileges required

Low

User interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

Low

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L