HCL BigFix SaaS Authentication Service is vulnerable to cache poisoning

5.3 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Description

HCL BigFix SaaS Authentication Service is vulnerable to cache poisoning. The BigFix SaaS's HTTP responses were observed to include the Origin header. Its presence alongside an unvalidated reflection of the Origin header value introduces a potential for cache poisoning.

Basic Information

ID CVE-2025-52621

Source HCL

Published Aug 15, 2025 at 22:45

Affected Product

Vendor HCL Software

Product BigFix SaaS Remediate

Version < 8.1.14

Affected Versions HCL Software BigFix SaaS Remediate < 8.1.14

CWE Classification

CWE-346

References

support.hcl-software.com /csm

{
    "lastseen": "",
    "description": "HCL BigFix SaaS Authentication Service is vulnerable to cache poisoning.  \u00a0The BigFix SaaS's HTTP responses were observed to include the Origin header. Its presence alongside an unvalidated reflection of the Origin header value introduces a potential for cache poisoning.",
    "published": "2025-08-15T22:45:55.628Z",
    "modified": "2025-08-15T22:45:55.628Z",
    "type": "cve",
    "title": "HCL BigFix SaaS Authentication Service is vulnerable to cache poisoning",
    "source": "HCL",
    "references": "https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0123330",
    "id": "CVE-2025-52621",
    "bulletinFamily": "",
    "cwe": [
        "CWE-346"
    ],
    "cvelist": null,
    "sourceData": "HCL Software BigFix SaaS Remediate < 8.1.14",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "BigFix SaaS Remediate",
    "version": "< 8.1.14",
    "vendor": "HCL Software",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

HCL BigFix SaaS Authentication Service is vulnerable to cache poisoning_CVE-2025-52621