CVE-2022-42454

Summary

Insights for Vulnerability Remediation (IVR) is vulnerable to man-in-the-middle attacks that may lead to information disclosure.  This requires privileged network access.

Affected Software

VendorProductVersion RangeStatus
HCL SoftwareBigFix Insights for Vulnerability Remediation<= v2.0affected

Weaknesses

  • n/a

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References