NotCVE - vendor:"Hcltech" product:"Domino" version:"10.0.1"

Page 2 of 13 results (0.001 seconds)

CVSS: 5.3EPSS: 0%CPEs: 12EXPL: 0

CVE-2020-4129

https://notcve.org/view.php?id=CVE-2020-4129

30 Nov 2020 — HCL Domino is susceptible to a lockout policy bypass vulnerability in the LDAP service. An unauthenticated attacker could use this vulnerability to mount a brute force attack against the LDAP service. Fixes are available in HCL Domino versions 9.0.1 FP10 IF6, 10.0.1 FP6 and 11.0.1 FP1 and later. HCL Domino es susceptible a una vulnerabilidad de omisión de la política de bloqueo en el servicio LDAP. Un atacante no autenticado podría utilizar esta vulnerabilidad para montar un ataque de fuerza bruta contra el... • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085407 •

CVSS: 6.5EPSS: 0%CPEs: 14EXPL: 0

CVE-2020-4127

https://notcve.org/view.php?id=CVE-2020-4127

30 Nov 2020 — HCL Domino is susceptible to a Login CSRF vulnerability. With a valid credential, an attacker could trick a user into accessing a system under another ID or use an intranet user's system to access internal systems from the internet. Fixes are available in HCL Domino versions 9.0.1 FP10 IF6, 10.0.1 FP6 and 11.0.1 FP1 and later. HCL Domino es susceptible a una vulnerabilidad CSRF de inicio de sesión. Con una credencial válida, un atacante podría engañar a un usuario para que acceda a un sistema con otra ident... • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085409 • CWE-352: Cross-Site Request Forgery (CSRF) •

CVSS: 7.5EPSS: 0%CPEs: 15EXPL: 0

CVE-2020-14230

https://notcve.org/view.php?id=CVE-2020-14230

21 Nov 2020 — HCL Domino is susceptible to a Denial of Service vulnerability caused by improper validation of user-supplied input. A remote unauthenticated attacker could exploit this vulnerability using a specially-crafted email message to hang the server. Versions previous to releases 9.0.1 FP10 IF6, 10.0.1 FP5 and 11.0.1 are affected. HCL Domino es susceptible a una vulnerabilidad de Denegación de Servicio causada por una comprobación inapropiada de la entrada suministrada por el usuario. Un atacante remoto no au... • https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085303 • CWE-20: Improper Input Validation •

1 2