Lotus Domino Security Vulnerabilities and Issues — Lotus Domino CVE List

Lucene search

IbmLotus Domino

10 matches found

CVE•added 2013/08/09 7:55 p.m.•111 views

CVE-2013-3027

Integer overflow in the DWA9W ActiveX control in iNotes in IBM Domino 9.0 before IF3 allows remote attackers to execute arbitrary code via a crafted web page, aka SPR PTHN97XHFW.

9.3CVSS7.9AI score0.04399EPSS

CVE•added 2013/01/11 12:55 a.m.•110 views

CVE-2012-4820

Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Ti...

9.3CVSS4.5AI score0.09366EPSS

CVE•added 2013/01/11 12:55 a.m.•86 views

CVE-2012-4821

Multiple unspecified vulnerabilities in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics Syst...

9.3CVSS5.5AI score0.05992EPSS

CVE•added 2013/01/11 12:55 a.m.•86 views

CVE-2012-4823

9.3CVSS5.2AI score0.13162EPSS

CVE•added 2013/01/11 12:55 a.m.•82 views

CVE-2012-4822

9.3CVSS5.3AI score0.10236EPSS

CVE•added 2010/09/16 9:0 p.m.•72 views

CVE-2010-3407

Stack-based buffer overflow in the MailCheck821Address function in nnotes.dll in the nrouter.exe service in the server in IBM Lotus Domino 8.0.x before 8.0.2 FP5 and 8.5.x before 8.5.1 FP2 allows remote attackers to execute arbitrary code via a long e-mail address in an ORGANIZER:mailto header in a...

9.3CVSS7.9AI score0.77741EPSS

CVE•added 2007/10/29 9:46 p.m.•56 views

CVE-2007-3510

Buffer overflow in the IMAP service in IBM Lotus Domino before 6.5.6 FP2, and 7.x before 7.0.3, allows remote authenticated users to execute arbitrary code via a long mailbox name.

9CVSS7AI score0.0874EPSS

CVE•added 2011/02/08 10:0 p.m.•49 views

CVE-2011-0920

The Remote Console in IBM Lotus Domino, when a certain unsupported configuration involving UNC share pathnames is used, allows remote attackers to bypass authentication and execute arbitrary code via unspecified vectors, aka SPR PRAD89WGRS.

9.3CVSS8.4AI score0.04369EPSS

CVE•added 2011/09/19 12:2 p.m.•45 views

CVE-2011-3575

Stack-based buffer overflow in the NSFComputeEvaluateExt function in Nnotes.dll in IBM Lotus Domino 8.5.2 allows remote authenticated users to execute arbitrary code via a long tHPRAgentName parameter in an fmHttpPostRequest OpenForm action to WebAdmin.nsf.

9CVSS7.7AI score0.41315EPSS

CVE•added 2007/06/06 9:30 p.m.•34 views

CVE-2007-0068

IBM Lotus Domino 7.0.x before 7.0.3 does not revalidate the signature on a signed scheduled agent after the agent is modified, which allows remote authenticated users to gain privileges via a modified agent in a server database.

9.3CVSS6.3AI score0.01769EPSS