CVSS: 3.7EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30132 – Missing default HTTP security headers affect HCL Nomad server on Domino
https://notcve.org/view.php?id=CVE-2024-30132
HCL Nomad server on Domino did not configure certain HTTP Security headers by default which could allow an attacker to obtain sensitive information via unspecified vectors. • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0116298 • CWE-922: Insecure Storage of Sensitive Information •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-23586 – An insufficient session timeout vulnerability affects HCL Nomad server on Domino
https://notcve.org/view.php?id=CVE-2024-23586
HCL Nomad is susceptible to an insufficient session expiration vulnerability. Under certain circumstances, an unauthenticated attacker could obtain old session information. • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0115264 • CWE-613: Insufficient Session Expiration •
CVSS: 8.6EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30128 – An open proxy vulnerability affects HCL Nomad server on Domino
https://notcve.org/view.php?id=CVE-2024-30128
HCL Nomad server on Domino is affected by an open proxy vulnerability in which an unauthenticated attacker can mask their original source IP address. This may enable an attacker to trick the user into exposing sensitive information. • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0115504 • CWE-441: Unintended Proxy or Intermediary ('Confused Deputy') •
CVSS: 3.7EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30130 – HCL Nomad server on Domino is affected by a use of web browser cache containing sensitive information vulnerability
https://notcve.org/view.php?id=CVE-2024-30130
HCL Nomad server on Domino is vulnerable to the cache containing sensitive information which could potentially give an attacker the ability to acquire the sensitive information. El servidor HCL Nomad en Domino es vulnerable al caché que contiene información confidencial, lo que potencialmente podría brindarle a un atacante la capacidad de adquirir información confidencial. • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0114184 • CWE-525: Use of Web Browser Cache Containing Sensitive Information •