Lotus Notes Security Vulnerabilities and Issues — Lotus Notes CVE List

Lucene search

IbmLotus Notes

5 matches found

CVE•added 2017/09/05 9:29 p.m.•64 views

CVE-2017-1129

IBM Notes 8.5 and 9.0 is vulnerable to a denial of service. If a user is persuaded to click on a malicious link, it could cause the Notes client to hang and have to be restarted. IBM X-Force ID: 121370.

6.5CVSS6.2AI score0.68501EPSS

CVE•added 2017/09/05 9:29 p.m.•60 views

CVE-2017-1130

IBM Notes 8.5 and 9.0 is vulnerable to a denial of service. If a user is persuaded to click on a malicious link, it would open up many file select dialog boxes which would cause the client hang and have to be restarted. IBM X-Force ID: 121371.

6.5CVSS6.2AI score0.6548EPSS

CVE•added 2013/05/10 11:42 a.m.•54 views

CVE-2013-2977

Integer overflow in IBM Notes 8.5.x before 8.5.3 FP4 Interim Fix 1 and 9.x before 9.0 Interim Fix 1 on Windows, and 8.5.x before 8.5.3 FP5 and 9.x before 9.0.1 on Linux, allows remote attackers to execute arbitrary code via a malformed PNG image in a previewed e-mail message, aka SPR NPEI96K82Q.

6.8CVSS7.8AI score0.21693EPSS

CVE•added 2012/09/07 10:32 a.m.•51 views

CVE-2010-5251

Multiple untrusted search path vulnerabilities in IBM Lotus Notes 8.5 allow local users to gain privileges via a Trojan horse (1) nnoteswc.dll or (2) nlsxbe.dll file in the current working directory, as demonstrated by a directory that contains a .vcf, .vcs, or .ics file. NOTE: the provenance of th...

6.9CVSS6.4AI score0.00075EPSS

CVE•added 2007/12/28 9:46 p.m.•40 views

CVE-2007-6594

IBM Lotus Notes 8 for Linux before 8.0.1 uses (1) unspecified weak permissions for the installation kit obtained through a Notes 8 download and (2) 0777 permissions for the installdata file that is created by setup.sh, which allows local users to gain privileges via a Trojan horse file.

6.9CVSS6.4AI score0.00037EPSS