CVE-2025-31973

MEDIUM

HCL BigFix Service Management (SM) is susceptible to a Configuration – 'Insecure Use of Base Image Version'. Using outdated or insecure base images may introduce known vulnerabilities, potentially increasing the risk of exploitation in the application environment.

CVSS v3.1 Score

4.0
MEDIUM
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L
Attack Vector
LOCAL
Complexity
LOW
Privileges
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality
LOW
Integrity
LOW
Availability
LOW
Published: 5/20/2026Modified: 5/20/2026

Related Intelligence (1)

CRITICALVulnerability

NVD CRITICAL: CVE-2025-31973 — HCL BigFix Service Management (SM) is susceptible to a Configuration – 'Insecur...

HCL BigFix Service Management (SM) is susceptible to a Configuration – 'Insecure Use of Base Image Version'. Using outdated or insecure base images may introduce known vulnerabilities, potentially increasing the risk of exploitation in the application environment.

CVE-2025-31973
NIST NVD

References (1)

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0128144Vendor Advisory