Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hcltech vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-14255
HCL Digital Experience 9.5 containers include vulnerabilities that could expose sensitive data to unauthorized parties via crafted requests. These affect containers only. These do not affect traditional on-premise installations.
Hcltech Digital Experience 9.5
7.5
CVSSv3
CVE-2020-14273
HCL Domino is susceptible to a Denial of Service (DoS) vulnerability due to insufficient validation of input to its public API. An unauthenticated attacker could could exploit this vulnerability to crash the Domino server.
Hcltech Domino 10.0.1
Hcltech Domino 11.0.0
Hcltech Domino 11.0.1
7.5
CVSSv3
CVE-2020-14254
TLS-RSA cipher suites are not disabled in HCL BigFix Inventory up to v10.0.2. If TLS 2.0 and secure ciphers are not enabled then an attacker can passively record traffic and later decrypt it.
Hcltech Bigfix Platform
7.5
CVSSv3
CVE-2020-14230
HCL Domino is susceptible to a Denial of Service vulnerability caused by improper validation of user-supplied input. A remote unauthenticated attacker could exploit this vulnerability using a specially-crafted email message to hang the server. Versions previous to releases 9.0.1 ...
Hcltech Domino
Hcltech Domino 9.0.1
Hcltech Domino 10.0.1
7.5
CVSSv3
CVE-2020-14234
HCL Domino is susceptible to a Denial of Service vulnerability due to improper validation of user-supplied input, potentially giving an attacker the ability to crash the server. Versions previous to release 9.0.1 FP10 IF6 and release 10.0.1 are affected.
Hcltech Domino
Hcltech Domino 9.0.1
7.5
CVSSv3
CVE-2020-14258
HCL Notes is susceptible to a Denial of Service vulnerability caused by improper validation of user-supplied input. A remote unauthenticated attacker could exploit this vulnerability using a specially-crafted email message to hang the client. Versions 9, 10 and 11 are affected.
Hcltech Notes 9.0
Hcltech Notes 10.0
Hcltech Notes 11.0
7.5
CVSSv3
CVE-2019-4326
"HCL AppScan Enterprise security rules update administration section of the web application console is missing HTTP Strict-Transport-Security Header."
Hcltech Appscan
7.5
CVSSv3
CVE-2019-4327
"HCL AppScan Enterprise uses hard-coded credentials which can be exploited by malicious users to get unauthorized access to application's encrypted files."
Hcltech Appscan
7.4
CVSSv3
CVE-2022-27547
HCL iNotes is susceptible to a link to non-existent domain vulnerability. An attacker could use this vulnerability to trick a user into supplying sensitive information such as username, password, credit card number, etc.
Hcltech Hcl Inotes 11.0.1
Hcltech Hcl Inotes 10.0.1
Hcltech Hcl Inotes 9.0.1
Hcltech Hcl Inotes 10.0
Hcltech Hcl Inotes 11.0
Hcltech Hcl Inotes 12.0
Hcltech Hcl Inotes 12.0.1
Hcltech Domino 10.0.1
Hcltech Domino 9.0.1
Hcltech Domino 11.0
Hcltech Domino 11.0.1
Hcltech Domino 9.0
Hcltech Domino 10.0
Hcltech Domino 12.0
Hcltech Domino 12.0.1
7.1
CVSSv3
CVE-2023-23342
If certain local files are manipulated in a certain manner, the validation to use the cryptographic keys can be circumvented.
Hcltech Hcl Nomad
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »