Published: 26/06/2020 Updated: 06/07/2020
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

Vulnerability Summary

HCL Notes could allow a remote malicious user to obtain sensitive information, caused by a flaw in the mailto protocol. By persuading a victim to open a specially-crafted mailto link, an attacker could exploit this vulnerability to obtain sensitive information, and use this information to launch further attacks against the affected system.

Vulnerability Trend

Affected Products

Vendor Product Versions
HcltechNotes9.0, 10.0, 11.0