CVE-2025-62338
Awaiting Analysis
Awaiting Analysis - Queue
Lack of Input Validation in HCL BigFix Cloud Lifecycle Management
Vulnerability report for CVE-2025-62338, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.
Publication date: 2026-06-04
Last updated on: 2026-06-05
Assigner: HCL Software
Description
Description
HCL BigFix Cloud Lifecycle Management is affected by lack of input validation.Β This low-level flaw allows unauthorized access and may lead to information exposure.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| hcl | bigfix_cloud_lifecycle_management | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |