cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-28025,https://securityvulnerability.io/vulnerability/CVE-2023-28025,"An HTML injection vulnerability can affect HCL BigFix Mobile / Modern Client Management ","Due to this vulnerability, the Master operator could potentially incorporate an SVG tag into HTML, leading to an alert pop-up displaying a cookie. To mitigate stored XSS vulnerabilities, a preventive measure involves thoroughly sanitizing and validating all user inputs before they are processed and stored in the server storage. 
",HCL Software,HCL BigFix Mobile / Modern Client Management,6.6,MEDIUM,0.0005300000193528831,false,false,false,false,,false,false,2023-12-21T01:15:00.000Z,0
CVE-2023-28012,https://securityvulnerability.io/vulnerability/CVE-2023-28012,"HCL BigFix Mobile can be affected by a command injection vulnerability ","HCL BigFix Mobile is vulnerable to a command injection attack. An authenticated attacker could run arbitrary shell commands on the WebUI server.
",Hcl Software,Hcl Bigfix Mobile,5.4,MEDIUM,0.0007800000021234155,false,false,false,false,,false,false,2023-07-27T00:15:00.000Z,0
CVE-2023-28014,https://securityvulnerability.io/vulnerability/CVE-2023-28014,"HCL BigFix Mobile can be affected by a cross-site scripting (XSS) vulnerability ","HCL BigFix Mobile is vulnerable to a cross-site scripting attack. An authenticated attacker could inject malicious scripts into the application.
",Hcl Software,Hcl Bigfix Mobile,6.6,MEDIUM,0.0005300000193528831,false,false,false,false,,false,false,2023-07-27T00:15:00.000Z,0
CVE-2021-27780,https://securityvulnerability.io/vulnerability/CVE-2021-27780," HCL BigFix Mobile / Modern Client Management is vulnerable to unauthenticated XML interaction",The software may be vulnerable to both Un-Auth XML interaction and unauthenticated device enrollment.,Hcl Software,Hcl Bigfix Mobile / Modern Client Management,5.3,MEDIUM,0.0007300000288523734,false,false,false,false,,false,false,2022-05-27T17:15:00.000Z,0
CVE-2021-27781,https://securityvulnerability.io/vulnerability/CVE-2021-27781," HCL BigFix Mobile / Modern Client Management is vulnerable to stored cross-site scripting",The Master operator may be able to embed script tag in HTML with alert pop-up display cookie.,Hcl Software,Hcl Bigfix Mobile / Modern Client Management,6.6,MEDIUM,0.000539999979082495,false,false,false,false,,false,false,2022-05-27T17:15:00.000Z,0
CVE-2021-27783,https://securityvulnerability.io/vulnerability/CVE-2021-27783," HCL BigFix Mobile / Modern Client Management is vulnerable to sensitive information exposure",User generated PPKG file for Bulk Enroll may have unencrypted sensitive information exposed.,Hcl Software,Hcl Bigfix Mobile / Modern Client Management,6.8,MEDIUM,0.0006500000017695129,false,false,false,false,,false,false,2022-05-25T17:15:00.000Z,0