All HCL BigFix RunBookAI versions prior to the 2025 security patch
Summary
HCL BigFix RunBookAI is affected by an unvalidated command input vulnerability that enables potential command smuggling. Improper handling of user input allows an attacker to inject and execute unauthorized commands on the affected system. Successful exploitation can lead to full system compromise and unauthorized access to managed BigFix infrastructure.
Remediation
Install the latest official security update released by HCL Software for BigFix RunBookAI. Restrict access to the vulnerable RunBookAI component to only authorized administrative users. Scan systems for unauthorized activity after applying the patch to rule out prior exploitation.
TopVuln sends digest emails with high-risk CVE picks across multiple authoritative sources—curated with EPSS and AI. Choose daily per-stream emails and optional weekly or monthly roundups.