Skip to main content

Mondoo

Vulnerability Management
Technology
Services

Solutions

Financial Services
Manufacturing
Healthcare

Resources

Blog
Vulnerability Database
Documentation
GitHub

Company

About
Careers
Partners
Contact

Legal

Privacy
Terms
Imprint

© 2026 Mondoo, Inc.

Log in Get Assessment

Vulnerability IntelligenceCVE-2025-52613

CVE-2025-52613

MEDIUM4.6

HCL BigFix Service Management (SM) is affected by use of a vulnerable component

Published May 6, 2026

Modified 1 weeks ago

Details

HCL BigFix Service Management (SM) is affected by use of a vulnerable WSGI Server was identified. Deploying an outdated or insecure WSGI server may expose the application to known security weaknesses, potentially increasing the risk of exploitation and unauthorized access.

References

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0128144

https://www.cve.org/CVERecord?id=CVE-2025-52613

CVSS Analysis

CVSS v3.1

4.6

Exploitability

Attack Vector

AdjacentAV:A

Attack Complexity

HighAC:H

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

Scope

UnchangedS:U

Impact

Confidentiality

LowC:L

Integrity

LowI:L

Availability

LowA:L

4.6/CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

Weakness Type (CWE)

Information Disclosure

Information Exposure

Ecosystems

Timeline

PublishedMay 6, 2026

ModifiedMay 6, 2026

CVE-2025-52613 | Mondoo Vulnerability Intelligence