Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hcltech domino 9.0.1 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-14230
HCL Domino is susceptible to a Denial of Service vulnerability caused by improper validation of user-supplied input. A remote unauthenticated attacker could exploit this vulnerability using a specially-crafted email message to hang the server. Versions previous to releases 9.0.1 ...
Hcltech Domino
Hcltech Domino 10.0.1
Hcltech Domino 9.0.1
5.5
CVSSv3
CVE-2022-38654
HCL Domino is susceptible to an information disclosure vulnerability. In some scenarios, local calls made on the server to search the Domino directory will ignore xACL read restrictions. An authenticated attacker could leverage this vulnerability to access attributes from a user&...
Hcltech Domino 10.0.1
Hcltech Domino 9.0.1
Hcltech Domino 11.0.1
Hcltech Domino 10.0.0
Hcltech Domino 12.0
8.8
CVSSv3
CVE-2022-38660
HCL XPages applications are susceptible to a Cross Site Request Forgery (CSRF) vulnerability. An unauthenticated attacker could exploit this vulnerability to perform actions in the application on behalf of the logged in user.
Hcltech Domino
Hcltech Domino 9.0.1
7.5
CVSSv3
CVE-2020-14234
HCL Domino is susceptible to a Denial of Service vulnerability due to improper validation of user-supplied input, potentially giving an attacker the ability to crash the server. Versions previous to release 9.0.1 FP10 IF6 and release 10.0.1 are affected.
Hcltech Domino
Hcltech Domino 9.0.1
7.8
CVSSv3
CVE-2022-44750
HCL Domino is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView. This could allow a remote unauthenticated malicious user to crash the application or execute arbitrary code via a crafted Lotus Ami Pro file. This is different from the vu...
Hcltech Domino 9.0.1
Hcltech Domino 9.0
7.8
CVSSv3
CVE-2022-44752
HCL Domino is susceptible to a stack based buffer overflow vulnerability in wp6sr.dll in Micro Focus KeyView. This could allow a remote unauthenticated malicious user to crash the application or execute arbitrary code via a crafted WordPerfect file. This vulnerability applies to ...
Hcltech Domino 9.0.1
Hcltech Domino 9.0
7.8
CVSSv3
CVE-2022-44754
HCL Domino is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView. This could allow a remote unauthenticated malicious user to crash the application or execute arbitrary code via a crafted Lotus Ami Pro file. This is different from the vu...
Hcltech Domino 9.0.1
Hcltech Domino 9.0
6.5
CVSSv3
CVE-2020-4127
HCL Domino is susceptible to a Login CSRF vulnerability. With a valid credential, an attacker could trick a user into accessing a system under another ID or use an intranet user's system to access internal systems from the internet. Fixes are available in HCL Domino versions...
Hcltech Hcl Domino
Hcltech Hcl Domino 9.0.1
Hcltech Hcl Domino 10.0.1
5.3
CVSSv3
CVE-2020-4129
HCL Domino is susceptible to a lockout policy bypass vulnerability in the LDAP service. An unauthenticated attacker could use this vulnerability to mount a brute force attack against the LDAP service. Fixes are available in HCL Domino versions 9.0.1 FP10 IF6, 10.0.1 FP6 and 11.0....
Hcltech Hcl Domino
Hcltech Hcl Domino 9.0.1
Hcltech Hcl Domino 10.0.1
6.1
CVSSv3
CVE-2022-27546
HCL iNotes is susceptible to a Reflected Cross-site Scripting (XSS) vulnerability caused by improper validation of user-supplied input supplied with a form POST request. A remote attacker could exploit this vulnerability using a specially-crafted URL to execute script in a victim...
Hcltech Hcl Inotes 11.0.1
Hcltech Hcl Inotes 10.0.1
Hcltech Hcl Inotes 9.0.1
Hcltech Hcl Inotes 10.0
Hcltech Hcl Inotes 11.0
Hcltech Hcl Inotes 12.0
Hcltech Hcl Inotes 12.0.1
Hcltech Domino 10.0.1
Hcltech Domino 9.0.1
Hcltech Domino 11.0
Hcltech Domino 11.0.1
Hcltech Domino 9.0
Hcltech Domino 10.0
Hcltech Domino 12.0
Hcltech Domino 12.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »