Vulnerability in Hcl Software Domino
CVE-2020-4107
HCL Domino is affected by an Insufficient Access Control vulnerability. An authenticated attacker with local access to the system could exploit this vulnerability to attain escalation of privileges, denial of service, or information disclo…
EPSS: 0.002 (13.7th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 8.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H.
Affected products
- Hcl Software Domino — versions 9, 10 and 11
- Hcltech Domino — versions 9.0, 10.0, 11.0
Weakness classification (CWE)
Public proof-of-concept exploits
References
- psirt@hcl.com (x_refsource_MISC, Vendor Advisory)
Frequently asked questions
- What is CVE-2020-4107?
- CVE-2020-4107 is a high-severity vulnerability in Hcl Software Domino, classified under Improper Access Control. CVSS score: 8.8/10. Published 2022-05-19.
- How severe is CVE-2020-4107?
- High severity. CVSS v3 base score is 8.8 out of 10.
- Is CVE-2020-4107 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.