Hcltech Domino

23 CVEs affecting Hcltech Domino. Latest disclosed: 2024-09-27. Critical: 5, High: 7.

Top CVEs affecting Hcltech Domino
CVESeverityScorePublishedSummary
CVE-2022-44754Critical9.82022-12-19HCL Domino is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView. This could allow a remote unauthenticated attacke…
CVE-2022-44752Critical9.82022-12-19HCL Domino is susceptible to a stack based buffer overflow vulnerability in wp6sr.dll in Micro Focus KeyView. This could allow a remote unauthenticated attack…
CVE-2022-44750Critical9.82022-12-19HCL Domino is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView. This could allow a remote unauthenticated attacke…
CVE-2020-14244Critical9.82020-12-14A vulnerability in the MIME message handling of the Domino server (versions 9 and 10) could potentially be exploited by an unauthenticated attacker resulting i…
CVE-2020-14260Critical9.82020-12-02HCL Domino is susceptible to a Buffer Overflow vulnerability in DXL due to improper validation of user input. A successful exploit could enable an attacker to…
CVE-2020-4107High8.82022-05-19HCL Domino is affected by an Insufficient Access Control vulnerability. An authenticated attacker with local access to the system could exploit this vulnerabil…
CVE-2023-37539High8.42024-06-06The Domino Catalog template is susceptible to a Stored Cross-Site Scripting (XSS) vulnerability. An attacker with the ability to edit documents in the catalog…
CVE-2022-38660High8.32022-11-04HCL XPages applications are susceptible to a Cross Site Request Forgery (CSRF) vulnerability. An unauthenticated attacker could exploit this vulnerability to…
CVE-2022-27546High8.32022-08-29HCL iNotes is susceptible to a Reflected Cross-site Scripting (XSS) vulnerability caused by improper validation of user-supplied input supplied with a form POS…
CVE-2020-14273High7.52020-12-28HCL Domino is susceptible to a Denial of Service (DoS) vulnerability due to insufficient validation of input to its public API. An unauthenticated attacker cou…
CVE-2020-14234High7.52020-11-21HCL Domino is susceptible to a Denial of Service vulnerability due to improper validation of user-supplied input, potentially giving an attacker the ability to…
CVE-2020-14230High7.52020-11-21HCL Domino is susceptible to a Denial of Service vulnerability caused by improper validation of user-supplied input. A remote unauthenticated attacker could ex…
CVE-2022-27547Medium6.12022-08-29HCL iNotes is susceptible to a link to non-existent domain vulnerability. An attacker could use this vulnerability to trick a user into supplying sensitive inf…
CVE-2020-4080Medium6.12020-12-18HCL Verse v10 and v11 is susceptible to a Stored Cross-Site Scripting (XSS) vulnerability due to improper handling of message content. An unauthenticated remot…
CVE-2023-37495Medium5.92024-02-29Internet passwords stored in Person documents in the Domino® Directory created using the "Add Person" action on the People & Groups tab in the Domino® Administ…
CVE-2022-27558Medium5.92022-08-29HCL iNotes is susceptible to a Broken Password Strength Checks vulnerability. Custom password policies are not enforced on certain iNotes forms which could all…
CVE-2017-1712Medium5.92020-07-01"A vulnerability in the TLS protocol implementation of the Domino server could allow an unauthenticated, remote attacker to access sensitive information, aka a…
CVE-2022-38654Medium5.52022-11-04HCL Domino is susceptible to an information disclosure vulnerability. In some scenarios, local calls made on the server to search the Domino directory will ig…
CVE-2024-23586Medium5.32024-09-27HCL Nomad is susceptible to an insufficient session expiration vulnerability.   Under certain circumstances, an unauthenticated attacker could obtain old sessi…
CVE-2024-23562Medium5.32024-07-08A security vulnerability in HCL Domino could allow disclosure of sensitive configuration information. A remote unauthenticated attacker could exploit this vul…