Vulnerabilities > Hcltech > Domino > 10.0

DATE CVE VULNERABILITY TITLE RISK
2022-08-29 CVE-2022-27546 Cross-site Scripting vulnerability in Hcltech Domino and HCL Inotes
HCL iNotes is susceptible to a Reflected Cross-site Scripting (XSS) vulnerability caused by improper validation of user-supplied input supplied with a form POST request.
network
low complexity
hcltech CWE-79
6.1
6.1
2022-08-29 CVE-2022-27547 Open Redirect vulnerability in Hcltech Domino and HCL Inotes
HCL iNotes is susceptible to a link to non-existent domain vulnerability.
network
low complexity
hcltech CWE-601
7.4
7.4
2022-05-19 CVE-2020-4107 Unspecified vulnerability in Hcltech Domino 10.0/11.0/9.0
HCL Domino is affected by an Insufficient Access Control vulnerability.
local
low complexity
hcltech
7.8
7.8
2020-12-22 CVE-2020-14270 Improper Handling of Exceptional Conditions vulnerability in Hcltech Domino
HCL Domino v9, v10, v11 is susceptible to an Information Disclosure vulnerability in XPages due to improper error handling of user input.
network
low complexity
hcltech CWE-755
5.3
5.3
2020-12-14 CVE-2020-14244 Out-of-bounds Write vulnerability in Hcltech Domino
A vulnerability in the MIME message handling of the Domino server (versions 9 and 10) could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow.
network
low complexity
hcltech CWE-787
critical
 9.8
9.8