How severe is CVE-2022-38658?

CVE-2022-38658 has a CVSS v3 score of 7.7 (HIGH).

CVE-2022-38658

Name: windows
Author: microsoft

7.7HIGH

BigFix deployments that have installed the Notification Service on Windows are susceptible to disclosing SMTP BigFix operator's sensitive data in clear text. Operators who use Notification Service rel

Publicado: 12/24/2022Actualizado: 4/15/2025

Descripción

BigFix deployments that have installed the Notification Service on Windows are susceptible to disclosing SMTP BigFix operator's sensitive data in clear text. Operators who use Notification Service related content from BES Support are at risk of leaving their SMTP sensitive data exposed.

Análisis IAImpulsado por IA

Productos Afectados

hcltechbigfix_server_automation

microsoftwindows

Referencias

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0102117
Vendor Advisory
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0102117
Vendor Advisory