How severe is CVE-2022-38658?

CVE-2022-38658 has a CVSS v3 score of 7.7 (HIGH).

CVE-2022-38658

Name: windows
Author: microsoft

7.7HIGH

BigFix deployments that have installed the Notification Service on Windows are susceptible to disclosing SMTP BigFix operator's sensitive data in clear text. Operators who use Notification Service rel

Published: 12/24/2022Updated: 4/15/2025

Description

BigFix deployments that have installed the Notification Service on Windows are susceptible to disclosing SMTP BigFix operator's sensitive data in clear text. Operators who use Notification Service related content from BES Support are at risk of leaving their SMTP sensitive data exposed.

AI AnalysisPowered by AI

Affected Products

hcltechbigfix_server_automation

microsoftwindows

References

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0102117
Vendor Advisory
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0102117
Vendor Advisory