CVE-2024-23583

EUVD-2024-21078
An attacker could potentially intercept credentials via the task manager and perform unauthorized access to the Client Deploy Tool on Windows systems.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.7 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 22%
Affected Products (NVD)
VendorProductVersion
hcltechbigfix_platform
9.5 ≤
𝑥
< 9.5.25
hcltechbigfix_platform
10 ≤
𝑥
< 10.0.12
hcltechbigfix_platform
11.0.1
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
hcltechbigfix_platform
9.5 ≤
𝑥
≤ 9.5.24
ADP
hcltechbigfix_platform
10.0.0 ≤
𝑥
≤ 10.0.11
ADP
Common Weakness Enumeration
References
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0113140
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0113140