11 matches found
CVE-2020-14232
CVE-2020-14232 concerns HCL Notes v9 where the vulnerability arises from input parameter handling, leading to a stack buffer overflow. An authenticated attacker could crash the application or inject code executing with the privileges of the currently logged-in user. Affected component is the inpu...
CVE-2020-4089
CVE-2020-4089 affects HCL Notes (versions 9, 10, and 11). The vulnerability is an information leakage via the product’s support for the mailto protocol, which could cause files from the user’s filesystem or connected network filesystems to be leaked to a third party. Root cause details are not el...
CVE-2020-14258
CVE-2020-14258 affects HCL Notes (versions 9, 10, 11). A Denial of Service arises from improper validation of user-supplied input, enabling a remote, unauthenticated attacker to hang the client via a specially crafted email message. Affected components and exact root cause are described consisten...
CVE-2020-4102
The CVE-2020-4102 entry concerns HCL Notes DXL buffer overflow caused by improper input validation. Affected products are HCL Notes client versions 9–11, with the vulnerability enabling crash or attacker-controlled code execution on the client system. The NVD entry lists local attack vector with ...
CVE-2022-44755
CVE-2022-44755 describes a stack-based buffer overflow in lasr.dll within Micro Focus KeyView used by HCL Notes/Lotus Notes. Root cause: overflow in lasr.dll leading to potential remote code execution or crash when handling a crafted Lotus Ami Pro file. Affected software is Lotus Notes/Notes prev...
CVE-2022-44753
CVE-2022-44753 affects HCL Notes (Lotus Notes) and is tied to a stack-based buffer overflow in wp6sr.dll within Micro Focus KeyView. The vulnerability could allow a remote unauthenticated attacker to crash the application or execute arbitrary code via a crafted WordPerfect file. Public documents ...
CVE-2020-14224
CVE-2020-14224 describes a stack buffer overflow in the MIME message handling of the HCL Notes v9 client. The vulnerability can be exploited by an unauthenticated, remote attacker to crash Notes or inject code that runs with the privileges of the current user. Public metrics indicate a critical i...
CVE-2022-44751
CVE-2022-44751 affects HCL Notes with a stack-based buffer overflow in lasr.dll (Micro Focus KeyView). The vulnerability could allow a remote unauthenticated attacker to crash the application or execute arbitrary code via a crafted Lotus Ami Pro file. The issue is tied to software previously lice...
CVE-2020-14240
CVE-2020-14240 affects HCL Notes versions prior to 9.0.1 FP10 IF8, 10.0.1 FP6 and 11.0.1 FP1. The connected sources describe a Stored Cross-site Scripting (XSS) vulnerability in the Notes web interface that could allow an attacker to run scripts in the victim’s browser within the site’s security ...
CVE-2020-14268
CVE-2020-14268 affects the Notes client (versions 9 and 10) and stems from a weakness in MIME message handling. The vulnerability could be exploited by an unauthenticated attacker to trigger a stack buffer overflow, potentially crashing the client or allowing code to execute with the client’s pri...
CVE-2020-4097
CVE-2020-4097 affects HCL Notes client. The vulnerability is in input parameter handling and can cause a buffer overflow, potentially crashing the client or allowing attacker‑controlled code execution. Affected versions are Notes Client releases prior to 9.0.1 FixPack 10 Interim Fix 8, prior to 1...