CVE-2024-23583

Summary

An attacker could potentially intercept credentials via the task manager and perform unauthorized access to the Client Deploy Tool on Windows systems.

Affected Software

VendorProductVersion RangeStatus
HCL SoftwareBigFix Platform9.5 - 9.5.24, 10 - 10.0.11, 11.0.1affected

Weaknesses

  • CWE-522: CWE-522 Insufficiently Protected Credentials

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References