HCL BigFix Platform: Unauthorized Access to Sensitive Areas

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

4.0

HCL BigFix Platform: Unauthorized Access to Sensitive Areas

CVE-2026-21767

Summary

The HCL BigFix Platform may allow users to access areas of the platform without properly verifying their identity. This could lead to malicious users accessing sensitive information or making unauthorized changes. To protect your system, ensure that all users are properly authenticated and authorized before accessing the platform.

Original title

HCL BigFix Platform is affected by insufficient authentication. The application might allow users to access sensitive areas of the application without proper authentication.

Original description

HCL BigFix Platform is affected by insufficient authentication. The application might allow users to access sensitive areas of the application without proper authentication.

nvd CVSS3.1 4.0

Vulnerability type

CWE-306 Missing Authentication for Critical Function

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0129906

Published: 2 Apr 2026 · Updated: 2 Apr 2026 · First seen: 2 Apr 2026