CVSS 3.1 Score 7.5 of 10 (high)


Published Jul 18, 2023
Updated: Jul 27, 2023
CWE ID 326


CVE-2023-28021 is a cyber vulnerability that affects the BigFix WebUI. It is classified as a high-severity vulnerability with a base score of 7.5. The vulnerability arises from the use of weak cipher suites, which can potentially lead to a breach in confidentiality. The exploitability score for this vulnerability is 3.9, indicating a moderate level of difficulty in exploiting it. There is no requirement for privileges or user interaction to exploit this vulnerability. The attack vector is through the network, and it does not impact integrity or availability. Organizations can remediate this vulnerability by strengthening the cipher suites used in BigFix WebUI to ensure adequate encryption strength and protect sensitive information.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-28021 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options