6 Medium
AI Score
Confidence
Low
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:C/I:N/A:N
0.007 Low
EPSS
Percentile
79.9%
IBM Lotus Domino R5 and R6 WebMail, with “Generate HTML for all fields” enabled, stores HTTPPassword hashes from names.nsf in a manner accessible through Readviewentries and OpenDocument requests to the defaultview view, a different vector than CVE-2005-2428.
CPE | Name | Operator | Version |
---|---|---|---|
ibm:lotus_domino | ibm lotus domino | eq | 6.0 |
ibm:lotus_domino | ibm lotus domino | eq | 5.0 |