Known Vulnerabilities
CVE-2024-23556
SSL/TLS Renegotiation functionality potentially leading to DoS attack vulnerability.
MEDIUM
CVSS 5.9
Published May 17, 2024
CVE-2024-23554
Cross-Site Request Forgery (CSRF) on Session Token vulnerability that could potentially lead to Remote Code Execution (RCE).
MEDIUM
CVSS 5.7
Published May 17, 2024
CVE-2024-23583
An attacker could potentially intercept credentials via the task manager and perform unauthorized access to the Client Deploy Tool on Windows systems.
MEDIUM
CVSS 6.7
Published May 17, 2024
CVE-2023-37536
An integer overflow in xerces-c++ 3.2.3 in BigFix Platform allows remote attackers to cause out-of-bound access via HTTP request.
HIGH
CVSS 8.2
Published Oct 11, 2023