Vulnerabilities > Hcltech > Domino > 9.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-19 | CVE-2022-44750 | Out-of-bounds Write vulnerability in Hcltech Domino 9.0/9.0.1 HCL Domino is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView. | 7.8 |
| 2022-12-19 | CVE-2022-44752 | Out-of-bounds Write vulnerability in Hcltech Domino 9.0/9.0.1 HCL Domino is susceptible to a stack based buffer overflow vulnerability in wp6sr.dll in Micro Focus KeyView. | 7.8 |
| 2022-12-19 | CVE-2022-44754 | Out-of-bounds Write vulnerability in Hcltech Domino 9.0/9.0.1 HCL Domino is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView. | 7.8 |
| 2022-11-04 | CVE-2022-38660 | Cross-Site Request Forgery (CSRF) vulnerability in Hcltech Domino 9.0/9.0.1 HCL XPages applications are susceptible to a Cross Site Request Forgery (CSRF) vulnerability. | 8.8 |
| 2022-08-29 | CVE-2022-27546 | Cross-site Scripting vulnerability in Hcltech Domino and HCL Inotes HCL iNotes is susceptible to a Reflected Cross-site Scripting (XSS) vulnerability caused by improper validation of user-supplied input supplied with a form POST request. | 6.1 |
| 2022-08-29 | CVE-2022-27547 | Open Redirect vulnerability in Hcltech Domino and HCL Inotes HCL iNotes is susceptible to a link to non-existent domain vulnerability. | 7.4 |
| 2022-05-19 | CVE-2020-4107 | Unspecified vulnerability in Hcltech Domino 10.0/11.0/9.0 HCL Domino is affected by an Insufficient Access Control vulnerability. | 7.8 |
| 2020-11-21 | CVE-2020-14234 | Improper Input Validation vulnerability in Hcltech Domino 10.0.0/9.0/9.0.1 HCL Domino is susceptible to a Denial of Service vulnerability due to improper validation of user-supplied input, potentially giving an attacker the ability to crash the server. | 7.5 |
| 2020-11-21 | CVE-2020-14230 | Improper Input Validation vulnerability in Hcltech Domino HCL Domino is susceptible to a Denial of Service vulnerability caused by improper validation of user-supplied input. | 7.5 |
| 2020-07-01 | CVE-2017-1712 | Inadequate Encryption Strength vulnerability in Hcltech Domino 9.0 "A vulnerability in the TLS protocol implementation of the Domino server could allow an unauthenticated, remote attacker to access sensitive information, aka a Return of Bleichenbacher's Oracle Threat (ROBOT) attack. | 5.9 |