Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
notes vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2006-3778
IBM Lotus Notes 6.0, 6.5, and 7.0 does not properly handle replies to e-mail messages with alternate name users when the (1) "Save As Draft" option is used or (2) a "," (comma) is inside the "phrase" portion of an address, which can cause the e-mail ...
Ibm Lotus Notes 6.0
Ibm Lotus Notes 6.5
Ibm Lotus Notes 7.0
2.1
CVSSv2
CVE-2010-1487
IBM Lotus Notes 7.0, 8.0, and 8.5 stores administrative credentials in cleartext in SURunAs.exe, which allows local users to obtain sensitive information by examining this file, aka SPR JSTN837SEG.
Ibm Lotus Notes 7.0
Ibm Lotus Notes 8.0
Ibm Lotus Notes 8.5
4.3
CVSSv2
CVE-2007-1941
Cross-site scripting (XSS) vulnerability in the Active Content Filter feature in Domino Web Access (DWA) in IBM Lotus Notes prior to 6.5.6 and 7.x prior to 7.0.2 FP1 allows remote malicious users to inject arbitrary web script or HTML via a multipart/related e-mail message, a dif...
Ibm Lotus Notes 6.5.5
Ibm Lotus Notes 7.0.1
Ibm Lotus Notes 7.0
9.3
CVSSv2
CVE-2008-1217
Unspecified vulnerability in nlnotes.dll in the client in IBM Lotus Notes 6.5, 7.0.x prior to 7.0.2 CCH, and 8.0.x prior to 8.0.1 allows remote malicious users to execute arbitrary code via a crafted attachment in an e-mail message sent over SMTP, a variant of CVE-2007-6706.
Ibm Lotus Notes 6.5
Ibm Lotus Notes 7.0.2
Ibm Lotus Notes 8.0.0
10
CVSSv2
CVE-2010-1608
Stack-based buffer overflow in IBM Lotus Notes 8.5 and 8.5fp1, and possibly other versions, allows remote malicious users to execute arbitrary code via unknown attack vectors, as demonstrated by the vd_ln module in VulnDisco 9.0. NOTE: as of 20100222, this disclosure has no actio...
Ibm Lotus Notes 8.5
Ibm Lotus Notes 8.5.1
Ibm Lotus Notes 8.5.1.1
5.8
CVSSv2
CVE-2012-4824
Open redirect vulnerability in servlet/traveler in IBM Lotus Notes Traveler 8.5.3 prior to 8.5.3.3 Interim Fix 1 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirectURL parameter.
Ibm Lotus Notes Traveler 8.5.3.1
Ibm Lotus Notes Traveler 8.5.3.2
Ibm Lotus Notes Traveler 8.5.3.3
Ibm Lotus Notes Traveler 8.5.3
7.5
CVSSv2
CVE-2020-7717
All versions of package dot-notes are vulnerable to Prototype Pollution via the create function.
Dot-notes Project Dot-notes
6.8
CVSSv2
CVE-2013-2977
Integer overflow in IBM Notes 8.5.x prior to 8.5.3 FP4 Interim Fix 1 and 9.x prior to 9.0 Interim Fix 1 on Windows, and 8.5.x prior to 8.5.3 FP5 and 9.x prior to 9.0.1 on Linux, allows remote malicious users to execute arbitrary code via a malformed PNG image in a previewed e-mai...
Ibm Lotus Notes 8.5.2.3
Ibm Lotus Notes 8.5.1
Ibm Lotus Notes 8.5.1.3
Ibm Lotus Notes 8.5.1.4
Ibm Lotus Notes 8.5.3.3
Ibm Lotus Notes 8.5.3.2
Ibm Lotus Notes 8.5.1.2
Ibm Lotus Notes 8.5.0.0
Ibm Lotus Notes 8.5.3.1
Ibm Lotus Notes 8.5.3
Ibm Lotus Notes 8.5.0.1
Ibm Lotus Notes 8.5.1.5
Ibm Lotus Notes 8.5.2.2
Ibm Lotus Notes 8.5
Ibm Lotus Notes 8.5.3.4
Ibm Lotus Notes 8.5.1.1
Ibm Lotus Notes 8.5.1.0
Ibm Lotus Notes 8.5.2.0
Ibm Lotus Notes 8.5.2.1
Ibm Lotus Notes 9.0.0.0
Ibm Lotus Notes 8.5.2.3
Ibm Lotus Notes 8.5.1
1 Github repository
7.2
CVSSv2
CVE-2018-1409
IBM Notes Diagnostics (IBM Client Application Access and IBM Notes) could allow a local user to execute commands on the system. By crafting a command line sent via the shared memory IPC, which could be tricked into executing an executable chosen by the attacker. IBM X-Force ID: 1...
Ibm Notes 8.5.3.6
Ibm Notes 8.5.1.5
Ibm Notes 8.5.2.4
Ibm Notes 9.0
Ibm Notes 9.0.1.9
Ibm Client Application Access 1.0.1.2
Ibm Client Application Access 1.0.0.1
Ibm Client Application Access 1.0.1
4.6
CVSSv2
CVE-2018-1410
IBM Notes Diagnostics (IBM Client Application Access and IBM Notes) could allow a local user to execute commands on the system. By crafting a command line sent via the shared memory IPC, which could be tricked into executing an executable chosen by the attacker. IBM X-Force ID: 1...
Ibm Notes 8.5.3.6
Ibm Notes 8.5.1.5
Ibm Notes 8.5.2.4
Ibm Notes 9.0.1.9
Ibm Notes 9.0
Ibm Client Application Access 1.0.1
Ibm Client Application Access 1.0.1.2
Ibm Client Application Access 1.0.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »