// For flags

CVE-2020-4129

 

Severity Score

5.3
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

HCL Domino is susceptible to a lockout policy bypass vulnerability in the LDAP service. An unauthenticated attacker could use this vulnerability to mount a brute force attack against the LDAP service. Fixes are available in HCL Domino versions 9.0.1 FP10 IF6, 10.0.1 FP6 and 11.0.1 FP1 and later.

HCL Domino es susceptible a una vulnerabilidad de omisión de la política de bloqueo en el servicio LDAP. Un atacante no autenticado podría utilizar esta vulnerabilidad para montar un ataque de fuerza bruta contra el servicio LDAP. Las correcciones están disponibles en HCL Domino versiones 9.0.1 FP10 IF6, 10.0.1 FP6 y 11.0.1 FP1 y posteriores

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
None
Availability
None
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
None
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2019-12-30 CVE Reserved
  • 2020-11-30 CVE Published
  • 2023-08-16 EPSS Updated
  • 2024-08-04 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Hcltech
Search vendor "Hcltech"
 Hcl Domino
Search vendor "Hcltech" for product "Hcl Domino"
 < 9.0.1
Search vendor "Hcltech" for product "Hcl Domino" and version " < 9.0.1"
-
Affected
Hcltech
Search vendor "Hcltech"
 Hcl Domino
Search vendor "Hcltech" for product "Hcl Domino"
 >= 10.0.0 < 10.0.1
Search vendor "Hcltech" for product "Hcl Domino" and version " >= 10.0.0 < 10.0.1"
-
Affected
Hcltech
Search vendor "Hcltech"
 Hcl Domino
Search vendor "Hcltech" for product "Hcl Domino"
 >= 11.0.0 < 11.0.1
Search vendor "Hcltech" for product "Hcl Domino" and version " >= 11.0.0 < 11.0.1"
-
Affected
Hcltech
Search vendor "Hcltech"
 Hcl Domino
Search vendor "Hcltech" for product "Hcl Domino"
 9.0.1
Search vendor "Hcltech" for product "Hcl Domino" and version "9.0.1"
feature_pack_10_interim_fix_2
Affected
Hcltech
Search vendor "Hcltech"
 Hcl Domino
Search vendor "Hcltech" for product "Hcl Domino"
 9.0.1
Search vendor "Hcltech" for product "Hcl Domino" and version "9.0.1"
feature_pack_10_interim_fix_3
Affected
Hcltech
Search vendor "Hcltech"
 Hcl Domino
Search vendor "Hcltech" for product "Hcl Domino"
 9.0.1
Search vendor "Hcltech" for product "Hcl Domino" and version "9.0.1"
feature_pack_10_interim_fix_4
Affected
Hcltech
Search vendor "Hcltech"
 Hcl Domino
Search vendor "Hcltech" for product "Hcl Domino"
 9.0.1
Search vendor "Hcltech" for product "Hcl Domino" and version "9.0.1"
feature_pack_10_interim_fix_5
Affected
Hcltech
Search vendor "Hcltech"
 Hcl Domino
Search vendor "Hcltech" for product "Hcl Domino"
 10.0.1
Search vendor "Hcltech" for product "Hcl Domino" and version "10.0.1"
fixpack1
Affected
Hcltech
Search vendor "Hcltech"
 Hcl Domino
Search vendor "Hcltech" for product "Hcl Domino"
 10.0.1
Search vendor "Hcltech" for product "Hcl Domino" and version "10.0.1"
fixpack2
Affected
Hcltech
Search vendor "Hcltech"
 Hcl Domino
Search vendor "Hcltech" for product "Hcl Domino"
 10.0.1
Search vendor "Hcltech" for product "Hcl Domino" and version "10.0.1"
fixpack3
Affected
Hcltech
Search vendor "Hcltech"
 Hcl Domino
Search vendor "Hcltech" for product "Hcl Domino"
 10.0.1
Search vendor "Hcltech" for product "Hcl Domino" and version "10.0.1"
fixpack4
Affected
Hcltech
Search vendor "Hcltech"
 Hcl Domino
Search vendor "Hcltech" for product "Hcl Domino"
 10.0.1
Search vendor "Hcltech" for product "Hcl Domino" and version "10.0.1"
fixpack5
Affected