Lucene search

K
HcltechDomino

6 matches found

CVE
CVE
added 2022/11/04 9:15 p.m.56 views

CVE-2022-38654

HCL Domino is susceptible to an information disclosure vulnerability. In some scenarios, local calls made on the server to search the Domino directory will ignore xACL read restrictions. An authenticated attacker could leverage this vulnerability to access attributes from a user's person record.

5.5CVSS5AI score0.00063EPSS
CVE
CVE
added 2020/07/01 2:15 p.m.47 views

CVE-2017-1712

"A vulnerability in the TLS protocol implementation of the Domino server could allow an unauthenticated, remote attacker to access sensitive information, aka a Return of Bleichenbacher's Oracle Threat (ROBOT) attack. An attacker could iteratively query a server running a vulnerable TLS stack implem...

5.9CVSS5.5AI score0.00185EPSS
CVE
CVE
added 2020/12/22 9:15 p.m.47 views

CVE-2020-14270

HCL Domino v9, v10, v11 is susceptible to an Information Disclosure vulnerability in XPages due to improper error handling of user input. An unauthenticated attacker could exploit this vulnerability to obtain information about the XPages software running on the Domino server.

5.3CVSS5AI score0.00319EPSS
CVE
CVE
added 2020/12/01 2:15 p.m.45 views

CVE-2020-4128

HCL Domino is susceptible to a lockout policy bypass vulnerability in the ID Vault service. An unauthenticated attacker could use this vulnerability to mount a brute force attack against the ID Vault service.

5.3CVSS5.3AI score0.00319EPSS
CVE
CVE
added 2024/02/29 1:40 a.m.37 views

CVE-2023-37495

Internet passwords stored in Person documents in the Domino® Directory created using the "Add Person" action on the People & Groups tab in the Domino® Administrator are secured using a cryptographically weak hash algorithm. This could enable attackers with access to the hashed value to determine a ...

5.9CVSS5.6AI score0.00249EPSS
CVE
CVE
added 2023/09/08 6:15 p.m.33 views

CVE-2023-28010

In some configuration scenarios, the Domino server host name can be exposed. This information could be used to target future attacks.

5.3CVSS4.5AI score0.00096EPSS