Primary

Context

HCL BigFix Service Management Insecure Use of Base Image Version Vulnerability

Vulnerability

Patched

A vulnerability exists in HCL BigFix Service Management (SM) version 23, related to the insecure use of base image versions. This vulnerability arises from the use of outdated or insecure base images, which may contain known vulnerabilities that could be exploited in the application environment.

Impact

Exploitation of this vulnerability could lead to the introduction of known vulnerabilities into the application environment, increasing the risk of exploitation.

Remediation

Users can upgrade to HCL BigFix Service Management (SM) version 27 to address this vulnerability.

Added: May 20, 2026, 12:19 PM

Updated: May 20, 2026, 12:19 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.9

exploitability

2.9

remediation

0.0

relevance

8.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.9

exploitability

2.9

remediation

0.0

relevance

8.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

HCL BigFix Service Management Insecure Use of Base Image Version Vulnerability

Vulnerability

Impact

Remediation

Affected Products

HCL BigFix Service Management

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating