CVE-2025-31959

LOW NVD

CVSS Score 3.5

Severity LOW

Published May 06, 2026

Vendor unknown

Description

HCL BigFix Service Management (SM) application fails to strip EXIF metadata from uploaded images. This could lead to confidentiality and privacy risks if sensitive location information is unintentionally shared. .

References

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0128144