Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hcltech domino vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2023-28010
In some configuration scenarios, the Domino server host name can be exposed. This information could be used to target future attacks.
Hcltech Domino 12.0.2
7.8
CVSSv3
CVE-2022-44752
HCL Domino is susceptible to a stack based buffer overflow vulnerability in wp6sr.dll in Micro Focus KeyView. This could allow a remote unauthenticated malicious user to crash the application or execute arbitrary code via a crafted WordPerfect file. This vulnerability applies to ...
Hcltech Domino 9.0.1
Hcltech Domino 9.0
7.8
CVSSv3
CVE-2022-44750
HCL Domino is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView. This could allow a remote unauthenticated malicious user to crash the application or execute arbitrary code via a crafted Lotus Ami Pro file. This is different from the vu...
Hcltech Domino 9.0.1
Hcltech Domino 9.0
7.8
CVSSv3
CVE-2022-44754
HCL Domino is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView. This could allow a remote unauthenticated malicious user to crash the application or execute arbitrary code via a crafted Lotus Ami Pro file. This is different from the vu...
Hcltech Domino 9.0.1
Hcltech Domino 9.0
5.5
CVSSv3
CVE-2022-38654
HCL Domino is susceptible to an information disclosure vulnerability. In some scenarios, local calls made on the server to search the Domino directory will ignore xACL read restrictions. An authenticated attacker could leverage this vulnerability to access attributes from a user&...
Hcltech Domino 10.0.1
Hcltech Domino 9.0.1
Hcltech Domino 11.0.1
Hcltech Domino 10.0.0
Hcltech Domino 12.0
8.8
CVSSv3
CVE-2022-38660
HCL XPages applications are susceptible to a Cross Site Request Forgery (CSRF) vulnerability. An unauthenticated attacker could exploit this vulnerability to perform actions in the application on behalf of the logged in user.
Hcltech Domino
Hcltech Domino 9.0.1
6.1
CVSSv3
CVE-2022-27546
HCL iNotes is susceptible to a Reflected Cross-site Scripting (XSS) vulnerability caused by improper validation of user-supplied input supplied with a form POST request. A remote attacker could exploit this vulnerability using a specially-crafted URL to execute script in a victim...
Hcltech Hcl Inotes 11.0.1
Hcltech Hcl Inotes 10.0.1
Hcltech Hcl Inotes 9.0.1
Hcltech Hcl Inotes 10.0
Hcltech Hcl Inotes 11.0
Hcltech Hcl Inotes 12.0
Hcltech Hcl Inotes 12.0.1
Hcltech Domino 10.0.1
Hcltech Domino 9.0.1
Hcltech Domino 11.0
Hcltech Domino 11.0.1
Hcltech Domino 9.0
Hcltech Domino 10.0
Hcltech Domino 12.0
Hcltech Domino 12.0.1
7.4
CVSSv3
CVE-2022-27547
HCL iNotes is susceptible to a link to non-existent domain vulnerability. An attacker could use this vulnerability to trick a user into supplying sensitive information such as username, password, credit card number, etc.
Hcltech Hcl Inotes 11.0.1
Hcltech Hcl Inotes 10.0.1
Hcltech Hcl Inotes 9.0.1
Hcltech Hcl Inotes 10.0
Hcltech Hcl Inotes 11.0
Hcltech Hcl Inotes 12.0
Hcltech Hcl Inotes 12.0.1
Hcltech Domino 10.0.1
Hcltech Domino 9.0.1
Hcltech Domino 11.0
Hcltech Domino 11.0.1
Hcltech Domino 9.0
Hcltech Domino 10.0
Hcltech Domino 12.0
Hcltech Domino 12.0.1
7.5
CVSSv3
CVE-2022-27558
HCL iNotes is susceptible to a Broken Password Strength Checks vulnerability. Custom password policies are not enforced on certain iNotes forms which could allow users to set weak passwords, leading to easier cracking.
Hcltech Hcl Inotes 12.0.1
Hcltech Domino 12.0.1
7.8
CVSSv3
CVE-2020-4107
HCL Domino is affected by an Insufficient Access Control vulnerability. An authenticated attacker with local access to the system could exploit this vulnerability to attain escalation of privileges, denial of service, or information disclosure.
Hcltech Domino 11.0
Hcltech Domino 9.0
Hcltech Domino 10.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »