CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
69.6%
Ultra-light Mode in IBM Lotus iNotes (aka Domino Web Access or DWA) before 229.241 for Domino 8.0.2 FP3 does not properly handle script commands in the status-alerts URL, which has unspecified impact and attack vectors, aka SPR LSHR7TBM58.
Vendor | Product | Version | CPE |
---|---|---|---|
ibm | lotus_inotes | 229.111 | cpe:/a:ibm:lotus_inotes:229.111::: |
ibm | lotus_inotes | 229.221 | cpe:/a:ibm:lotus_inotes:229.221::: |
ibm | lotus_inotes | 229.041 | cpe:/a:ibm:lotus_inotes:229.041::: |
ibm | lotus_inotes | 229.191 | cpe:/a:ibm:lotus_inotes:229.191::: |
ibm | lotus_inotes | 229.141 | cpe:/a:ibm:lotus_inotes:229.141::: |
ibm | lotus_inotes | 229.211 | cpe:/a:ibm:lotus_inotes:229.211::: |
ibm | lotus_inotes | 229.201 | cpe:/a:ibm:lotus_inotes:229.201::: |
ibm | lotus_inotes | 229.031 | cpe:/a:ibm:lotus_inotes:229.031::: |
ibm | lotus_inotes | 229.181 | cpe:/a:ibm:lotus_inotes:229.181::: |
ibm | lotus_inotes | 229.061 | cpe:/a:ibm:lotus_inotes:229.061::: |