CVE-2025-59849

Improper management of Content Security Policy in HCL BigFix Remote Control Lite Web Portal (versions 10.1.0.0326 and lower) may allow the execution of malicious code in web pages.

medium 4.7 CVSS 3.1
Published: Dec 17, 2025
Modified: Jan 6, 2026
Vendor: Hcltechsw
Product: Hcl Devops Deploy

Description

Improper management of Content Security Policy in HCL BigFix Remote Control Lite Web Portal (versions 10.1.0.0326 and lower) may allow the execution of malicious code in web pages.

References

Related CVEs

CVE-2025-55254 low · 3.7
Improper management of Path-relative stylesheet import in HCL BigFix Remote Control Lite Web Portal (versions 10.1.0.0326 and lower) may allow to execute malicious code in certain