CVE-2023-28006: HCL BigFix OSD Bare Metal Server is affected by a weak cryptographic algorithm.

7.0 CVSS

Description

The OSD Bare Metal Server uses a cryptographic algorithm that is no longer considered sufficiently secure.

Classification

CVE ID: CVE-2023-28006

CVSS Base Severity: HIGH

CVSS Base Score: 7.0

Affected Products

Vendor: HCL Software

Product: HCL BigFix OSD Bare Metal Server

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 14.88% (scored less or equal to compared to others)

EPSS Date: 2025-02-03 (when was this score calculated)

References

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0105601

Timeline