CVE-2024-30151

HIGH

HCL BigFix Service Management (SM) is susceptible to Broken Access Control Vulnerability

Title source: cna

Description

HCL BigFix Service Management (SX) is affected by a Broken Access Control vulnerability leading to privilege escalation. This could allow unauthorized users to gain elevated privileges, bypassing intended access restrictions. This may result in exposure of sensitive data or unauthorized system modifications

References (1)

Core 1

Core References

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0127782

Scores

CVSS v3 8.3

EPSS 0.0005

EPSS Percentile 15.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-532

Status published

Products (2)

HCL/BigFix Service Management (SM) 23

hcltech/bigfix_service_management 23.0

Published May 06, 2026

Tracked Since May 07, 2026