Inotes Security Vulnerabilities and Issues — Inotes CVE List

Lucene search

IbmInotes

20 matches found

CVE•added 2017/09/05 9:29 p.m.•64 views

CVE-2017-1129

IBM Notes 8.5 and 9.0 is vulnerable to a denial of service. If a user is persuaded to click on a malicious link, it could cause the Notes client to hang and have to be restarted. IBM X-Force ID: 121370.

6.5CVSS6.2AI score0.68501EPSS

CVE•added 2017/09/05 9:29 p.m.•60 views

CVE-2017-1130

IBM Notes 8.5 and 9.0 is vulnerable to a denial of service. If a user is persuaded to click on a malicious link, it would open up many file select dialog boxes which would cause the client hang and have to be restarted. IBM X-Force ID: 121371.

6.5CVSS6.2AI score0.6548EPSS

CVE•added 2017/02/01 8:59 p.m.•46 views

CVE-2016-5882

IBM iNotes is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

6.1CVSS5.9AI score0.00282EPSS

CVE•added 2017/02/01 8:59 p.m.•45 views

CVE-2016-5880

5.4CVSS5.2AI score0.00269EPSS

CVE•added 2017/02/01 8:59 p.m.•44 views

CVE-2016-5884

6.1CVSS5.9AI score0.00282EPSS

CVE•added 2017/02/23 4:59 p.m.•43 views

CVE-2016-5883

IBM iNotes 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM Reference #: 1997010.

6.1CVSS5.9AI score0.00283EPSS

CVE•added 2017/02/01 8:59 p.m.•41 views

CVE-2016-2938

6.1CVSS5.9AI score0.00282EPSS

CVE•added 2017/02/01 8:59 p.m.•40 views

CVE-2016-2939

6.1CVSS5.9AI score0.00282EPSS

CVE•added 2017/06/12 7:29 p.m.•40 views

CVE-2017-1214

IBM iNotes 8.5 and 9.0 could allow a remote attacker to send a malformed email to a victim, that when opened could cause an information disclosure. IBM X-Force ID: 123854.

5.7CVSS5.2AI score0.00357EPSS

CVE•added 2017/02/01 10:59 p.m.•39 views

CVE-2016-5881

6.1CVSS5.9AI score0.00248EPSS

CVE•added 2017/07/31 9:29 p.m.•39 views

CVE-2017-1332

6.1CVSS5.8AI score0.00282EPSS

CVE•added 2017/12/13 6:29 p.m.•39 views

CVE-2017-1421

6.1CVSS5.9AI score0.00287EPSS

CVE•added 2017/05/26 4:29 p.m.•38 views

CVE-2017-1325

6.1CVSS5.8AI score0.0032EPSS

CVE•added 2017/02/01 8:59 p.m.•37 views

CVE-2016-6113

IBM Verse is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

6.1CVSS5.9AI score0.00282EPSS

CVE•added 2017/03/31 6:59 p.m.•37 views

CVE-2016-9990

6.1CVSS5.9AI score0.00248EPSS

CVE•added 2017/08/03 3:29 p.m.•36 views

CVE-2017-1327

6.1CVSS5.8AI score0.00282EPSS

CVE•added 2018/07/11 4:29 p.m.•32 views

CVE-2013-0592

Cross-site scripting (XSS) vulnerability in IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. IBM X-Force ID: 83815.

5.4CVSS5AI score0.00133EPSS

CVE•added 2018/07/11 4:29 p.m.•30 views

CVE-2013-0589

IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to bypass the remote image filtering mechanism and obtain sensitive information via a crafted e-mail message. IBM X-Force ID: 83371.

7.5CVSS7AI score0.00171EPSS

CVE•added 2020/07/01 2:15 p.m.•30 views

CVE-2017-1659

"HCL iNotes is susceptible to a Cross-Site Scripting (XSS) Vulnerability. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials."

6.1CVSS6AI score0.00289EPSS

CVE•added 2018/07/11 4:29 p.m.•29 views

CVE-2013-0594

Open redirect vulnerability in IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. IBM X-Force ID: 83383.

6.1CVSS5.9AI score0.00154EPSS