BigFix WebUI new release available - October 2025

Release Announcements WebUI (Release Announcements)
1

The HCL BigFix team announces a new release of all WebUI apps.
The WebUI release includes the following features:

Client Manager for Endpoint Protection - Now manages CrowdStrike!

Client Manager for Endpoint Protection (CMEP) now includes complete and validated support for CrowdStrike, offering full visibility, health status reporting, and management capabilities for CrowdStrike agents directly within the BigFix console and WebUI. This expansion allows administrators to seamlessly integrate CrowdStrike into their existing BigFix security and compliance workflows.

Patch Policies - Use Baseline in Pre and Post Action!

Patch Policies now support the selection of a Baseline for pre- and post-deployment actions. This enhancement enables administrators to automate complex workflows by executing predefined tasks before and/or after the deployment of patch content. For example, a pre-deployment Baseline can be used to back up critical configuration files or stop specific services, while a post-deployment Baseline can be used to restart services, perform integrity checks, or trigger compliance scans.

Insights - Use Windows NT Authentication for Data Source connection!

Insights now supports Windows NT Authentication for connecting to the BigFix Root Server, simplifying the configuration process and enhancing security for data retrieval.

The WebUI release addresses the following Security Vulnerabilities:

CVE-2025-7783 (form-data)
CVE-2025-47935, CVE-2025-47944, CVE-2025-7338 (multer)
CVE-2025-48387 (tar-fs)
CVE-2025-27210 (node.js)
CVE-2020-36604 (hoek)
CVE-2025-57349 (messageformat)
CVE-2025-52647 (Internal)
CVE-2025-52602 (Internal)

This release addresses the following Defect Articles

KB0122495 (Doc) - WebUi Device might not be able to export all groups
KB0120494 - Incorrect WebUI OS filter for Linux Red Hat Enterprise 9
KB0124428 - Custom checks not syncing in console
KB0123608 - Problems wirh Synchronize Custom Check wizard
KB0120571 - WebUI SCM module constantly out of sync

How to update

WebUI will update automatically by default, unless configured otherwise.
Please note that updates for BigFix Insights must be done manually via the Application Updates page on WebUI.

For more information, please see Managing Application Updates.

Published WebUI Site Versions

WebUI Site Name Site Version

Application Administration 39
Common 97
Custom 49
Patch 53
Patch Policies 48
Profile Management 32
Query 43
Software Distribution. 53
WebUI API 31
WebUI Content App 27
WebUI Data Sync 36
WebUI Extensions 13
WebUI Framework 33
WebUI MDM 24
WebUI Permissions and Preferences 26
WebUI Insights 30
WebUI IVR 20
WebUI CMEP 21
WebUI SCM 19
WebUI Reports 23
WebUI Take Action 36

WebUI Documentation link:
https://help.hcltechsw.com/bigfix/11.0/webui/index.html

1 Like
2

Outstanding!! :+1::+1:

Forum padding

1 Like
3

@adinia , Just to make sure about the Pre-Action / Post-Action Execution behavior of the Baselines will it still act the same as the current behavior - Patch Policy Overview

Sequence of MAGs will be executed on all targeted devices, even when patch Fixlets are not relevant. This means any Pre/Post tasks or Post action restarts will also execute if they are relevant.

5

I know it’s very early days but any documentation around it? It seems to me it’s Windows & MacOS only? Any timeline for Linux & Unix?

6

Yes, this behavior remains unchanged. The tasks/fixlets in the baseline will be evaluated and applied (if relevant) on all the devices targeted in the Patch Policy schedule.

7

Still checking out consumption, CMEP has focused on end user devices so if there is demand we would absolutely explore this. Please feel free to add this idea.

8

I realize we are probably an outlier but we have a couple of thousand Linux endpoints that people are using as their daily driver.

2 Likes
9

Thanks, @HCLJordan, I am still waiting to see the full range of functionality it offers (even requested a demo which I plan to invite our security folks and see if they have any other pain points managing CS) but yes, will certainly submit follow-up ideas for further improvements if such are identified and the Linux endpoints would certainly be one.

2 Likes
10

This topic was automatically closed after 30 days. New replies are no longer allowed.