CVE-2023-37536

Summary

An integer overflow in xerces-c++ 3.2.3 in BigFix Platform allows remote attackers to cause out-of-bound access via HTTP request.

Affected Software

VendorProductVersion RangeStatus
HCL SoftwareBigFix Platform9.5 - 9.5.22, 10 - 10.0.9affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References