Vulnerabilities > Hcltech > Domino
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-08 | CVE-2024-23562 | Unspecified vulnerability in Hcltech Domino 11.0/12.0/14.0 A security vulnerability in HCL Domino could allow disclosure of sensitive configuration information. | 7.5 |
| 2024-06-06 | CVE-2023-37539 | Cross-site Scripting vulnerability in Hcltech Domino 11.0/12.0/14.0 The Domino Catalog template is susceptible to a Stored Cross-Site Scripting (XSS) vulnerability. | 5.4 |
| 2023-09-08 | CVE-2023-28010 | Unspecified vulnerability in Hcltech Domino 12.0.2 In some configuration scenarios, the Domino server host name can be exposed. | 5.3 |
| 2022-12-19 | CVE-2022-44750 | Out-of-bounds Write vulnerability in Hcltech Domino 9.0/9.0.1 HCL Domino is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView. | 7.8 |
| 2022-12-19 | CVE-2022-44752 | Out-of-bounds Write vulnerability in Hcltech Domino 9.0/9.0.1 HCL Domino is susceptible to a stack based buffer overflow vulnerability in wp6sr.dll in Micro Focus KeyView. | 7.8 |
| 2022-12-19 | CVE-2022-44754 | Out-of-bounds Write vulnerability in Hcltech Domino 9.0/9.0.1 HCL Domino is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView. | 7.8 |
| 2022-11-04 | CVE-2022-38654 | Unspecified vulnerability in Hcltech Domino HCL Domino is susceptible to an information disclosure vulnerability. | 5.5 |
| 2022-11-04 | CVE-2022-38660 | Cross-Site Request Forgery (CSRF) vulnerability in Hcltech Domino 9.0/9.0.1 HCL XPages applications are susceptible to a Cross Site Request Forgery (CSRF) vulnerability. | 8.8 |
| 2022-08-29 | CVE-2022-27546 | Cross-site Scripting vulnerability in Hcltech Domino and HCL Inotes HCL iNotes is susceptible to a Reflected Cross-site Scripting (XSS) vulnerability caused by improper validation of user-supplied input supplied with a form POST request. | 6.1 |
| 2022-08-29 | CVE-2022-27547 | Open Redirect vulnerability in Hcltech Domino and HCL Inotes HCL iNotes is susceptible to a link to non-existent domain vulnerability. | 7.4 |