Vulnerabilities > CVE-2021-27760 - Unspecified vulnerability in Hcltech HCL Inotes 11.0.0/11.0.1

047910
CVSS 6.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
SINGLE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
hcltech

Summary

An issue was discovered in the Sametime chat feature in the Notes 11.0 - 11.0.1 FP4 clients. An authenticated Sametime chat user could cause Remote Code Execution on another chat client by sending a specially formatted message through chat containing Javascript code.

Vulnerable Configurations

Part Description Count
Application
Hcltech
6