CVE-2022-42454

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2022-42454
Insights for Vulnerability Remediation (IVR) is vulnerable to man-in-the-middle attacks that may lead to information disclosure.? This requires privileged network access.

5.3 /10

CVSS v3.0 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.6 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0102168 Vendor Advisory
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0102168 Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:hcltechsw:bigfix_insights_for_vulnerability_remediation:*:*:*:*:*:*:*:*
History

16 Apr 2025, 19:15

Type Values Removed Values Added
References (MISC) https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0102168 - Vendor Advisory () https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0102168 - Vendor Advisory

07 Nov 2023, 03:53

Type Values Removed Values Added
Summary Insights for Vulnerability Remediation (IVR) is vulnerable to man-in-the-middle attacks that may lead to information disclosure. This requires privileged network access. Insights for Vulnerability Remediation (IVR) is vulnerable to man-in-the-middle attacks that may lead to information disclosure.? This requires privileged network access.
Information

Published : 2022-12-21 17:15

Updated : 2025-04-16 19:15

NVD link : CVE-2022-42454

Mitre link : CVE-2022-42454

JSON object : View

Products Affected

hcltechsw

  • bigfix_insights_for_vulnerability_remediation
CWE
NVD-CWE-Other