Vulnerabilities

CVE-2025-52622

by Fred · 02/12/2025

The BigFix SaaS’s HTTP responses were missing some security headers. The absence of these headers weakens the application’s client-side security posture, making it more vulnerable to common web attacks that these headers are designed to mitigate, such as Cross-Site Scripting (XSS), Clickjacking, and protocol downgrade attacks.

More information : https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0127171

Similar

Tags: Cybersecurity Alert