CVE-2017-1712

2020-07-0113:47:50

HCL

www.cve.org

5.6 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.9%

JSON

“A vulnerability in the TLS protocol implementation of the Domino server could allow an unauthenticated, remote attacker to access sensitive information, aka a Return of Bleichenbacher’s Oracle Threat (ROBOT) attack. An attacker could iteratively query a server running a vulnerable TLS stack implementation to perform cryptanalytic operations that may allow decryption of previously captured TLS sessions.”

CNA Affected

[
  {
    "product": "\"HCL Domino\"",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "\"HCL Domino server releases prior to 9.0.1 Fixpack 10.  Versions 10 and later are not impacted.\""
      }
    ]
  }
]

References

support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0080545