Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lotus vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2007-5544
IBM Lotus Notes prior to 6.5.6, and 7.x prior to 7.0.3; and Domino prior to 6.5.5 FP3, and 7.x prior to 7.0.2 FP1; uses weak permissions (Everyone:Full Control) for memory mapped files (shared memory) in IPC, which allows local users to obtain sensitive information, or inject Lot...
Ibm Lotus Notes
Ibm Lotus Domino
Ibm Lotus Domino 7.0.2
Ibm Lotus Domino 6.5.5
NA
CVE-2008-2240
Stack-based buffer overflow in the Web Server service in IBM Lotus Domino prior to 7.0.3 FP1, and 8.x prior to 8.0.1, allows remote malicious users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long Accept-Language HTTP header.
Ibm Lotus Domino 6.0
Ibm Lotus Domino 6.5
Ibm Lotus Domino 7.0
Ibm Lotus Domino 8.0
Ibm Lotus Domino 8.0.1
1 EDB exploit
NA
CVE-2005-4819
Cross-site scripting (XSS) vulnerability in Lotus Domino versions prior to 6.5.4 fix pack 1 (FP1) and versions prior to 7.0 allows remote malicious users to inject arbitrary web script or HTML via unknown vectors.
Ibm Lotus Domino 6.5.4.1
Ibm Lotus Domino 6.5.4.2
Ibm Lotus Domino 6.5.4.3
Ibm Lotus Domino 6.0.5
Ibm Lotus Domino 6.5.4
NA
CVE-2007-4309
IBM Lotus Notes 5.x up to and including 7.0.2 allows user-assisted remote authenticated administrators to obtain a cleartext notes.id password by setting the notes.ini (1) KFM_ShowEntropy and (2) Debug_Outfile debug variables, a different vulnerability than CVE-2005-2696.
Ibm Lotus Notes 5.0
Ibm Lotus Notes 7.0
Ibm Lotus Notes 7.0.2
Ibm Lotus Notes 6.0
Ibm Lotus Notes 7.0.1
NA
CVE-2007-6593
Multiple stack-based buffer overflows in l123sr.dll in Autonomy (formerly Verity) KeyView SDK, as used by IBM Lotus Notes 5.x up to and including 8.x, allow user-assisted remote malicious users to execute arbitrary code via the (1) Length and (2) Value fields for certain Types in...
Ibm Lotus Notes 5.0
Ibm Lotus Notes 8.0
Ibm Lotus Notes 6.0
Ibm Lotus Notes 6.5
Ibm Lotus Notes 7.0
1 EDB exploit
NA
CVE-2001-1445
Unknown vulnerability in the SMTP server in Lotus Domino 5.0 up to and including 5.7 allows remote malicious users to bypass mail relaying restrictions via crafted e-mail addresses in "RCPT TO" commands.
Lotus Domino Mail Server 5.0.1
Lotus Domino Mail Server 5.0.2
Lotus Domino Mail Server 5.0.2b
Lotus Domino Mail Server 5.0.3
Lotus Domino Mail Server 5.0.4
Lotus Domino Mail Server 5.0.5
Lotus Domino Mail Server 5.0.0
Lotus Domino Mail Server 5.0.6
Lotus Domino Mail Server 5.0.7
NA
CVE-2010-4544
Cross-site scripting (XSS) vulnerability in the servlet in IBM Lotus Notes Traveler prior to 8.5.1.3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Ibm Lotus Notes Traveler 8.5.1.1
Ibm Lotus Notes Traveler 8.5.0.2
Ibm Lotus Notes Traveler 8.0.1.3
Ibm Lotus Notes Traveler 8.0.1.2
Ibm Lotus Notes Traveler
Ibm Lotus Notes Traveler 8.0.1
Ibm Lotus Notes Traveler 8.0
Ibm Lotus Notes Traveler 8.5.0.1
Ibm Lotus Notes Traveler 8.5.0.0
NA
CVE-2010-4547
IBM Lotus Notes Traveler prior to 8.5.1.3, when a multidomain environment is used, does not properly apply policy documents to mobile users from a different Domino domain than the Traveler server, which allows remote authenticated users to bypass intended access restrictions by u...
Ibm Lotus Notes Traveler 8.0
Ibm Lotus Notes Traveler 8.5.0.1
Ibm Lotus Notes Traveler 8.0.1.3
Ibm Lotus Notes Traveler 8.0.1
Ibm Lotus Notes Traveler
Ibm Lotus Notes Traveler 8.5.1.1
Ibm Lotus Notes Traveler 8.5.0.2
Ibm Lotus Notes Traveler 8.5.0.0
Ibm Lotus Notes Traveler 8.0.1.2
NA
CVE-2010-4550
IBM Lotus Notes Traveler prior to 8.5.1.3 allows remote malicious users to cause a denial of service (sync failure) via a malformed document.
Ibm Lotus Notes Traveler
Ibm Lotus Notes Traveler 8.0.1.3
Ibm Lotus Notes Traveler 8.0.1
Ibm Lotus Notes Traveler 8.5.1.1
Ibm Lotus Notes Traveler 8.5.0.2
Ibm Lotus Notes Traveler 8.5.0.1
Ibm Lotus Notes Traveler 8.5.0.0
Ibm Lotus Notes Traveler 8.0.1.2
Ibm Lotus Notes Traveler 8.0
NA
CVE-2012-4825
Multiple cross-site scripting (XSS) vulnerabilities in servlet/traveler/ILNT.mobileconfig in IBM Lotus Notes Traveler prior to 8.5.3.2 allow remote malicious users to inject arbitrary web script or HTML via the (1) userId or (2) address parameter in a getClientConfigFile action.
Ibm Lotus Notes Traveler
Ibm Lotus Notes Traveler 8.5.2.1
Ibm Lotus Notes Traveler 8.5.1.2
Ibm Lotus Notes Traveler 8.5.1.1
Ibm Lotus Notes Traveler 8.5.0.2
Ibm Lotus Notes Traveler 8.5.0.1
Ibm Lotus Notes Traveler 8.5.0.0
Ibm Lotus Notes Traveler 8.5.3
Ibm Lotus Notes Traveler 8.5.1.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »