LOW🇵🇱 Wersja polska

CVE-2024-42184

CVSS 2.5v3.1pub. 2025-01-23upd. 2026-04-15

BigFix Patch Download Plug-ins are affected by insecure support for file URI scheme. It could allow a malicious operator to attempt to download files using the file:// URI scheme.

CVSS Vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:N/A:N
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References