CVE-2025-52622 – HCL BigFix SaaS Remediate is affected by a security vulnerability

CVE ID : CVE-2025-52622

Published : Dec. 2, 2025, 5:59 p.m. | 27 minutes ago

Description : The BigFix SaaS’s HTTP responses were missing some security headers. The absence of these headers weakens the application’s client-side security posture, making it more vulnerable to common web attacks that these headers are designed to mitigate, such as Cross-Site Scripting (XSS), Clickjacking, and protocol downgrade attacks.

Severity: 5.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2025-13658 – Industrial Video & Control Longwatch has a Code Injection vulnerability

CVE-2025-13510 – Iskra iHUB and iHUB Lite has a Missing Authentication for Critical Function vulnerabilitiy

CVE-2025-13542 – DesignThemes LMS

CVE-2025-66468 – Aimeos GrapesJS CMS extension possible stores XSS exploitable by authenticated editors