Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2024-06-06	CVE-2023-37539	Cross-site Scripting vulnerability in Hcltech Domino 11.0/12.0/14.0 The Domino Catalog template is susceptible to a Stored Cross-Site Scripting (XSS) vulnerability. network low complexity hcltech CWE-79	5.4
2023-09-08	CVE-2023-28010	Unspecified vulnerability in Hcltech Domino 12.0.2 In some configuration scenarios, the Domino server host name can be exposed. network low complexity hcltech	5.3
2022-11-04	CVE-2022-38654	Unspecified vulnerability in Hcltech Domino HCL Domino is susceptible to an information disclosure vulnerability. local low complexity hcltech	5.5
2022-08-29	CVE-2022-27546	Cross-site Scripting vulnerability in Hcltech Domino and HCL Inotes HCL iNotes is susceptible to a Reflected Cross-site Scripting (XSS) vulnerability caused by improper validation of user-supplied input supplied with a form POST request. network low complexity hcltech CWE-79	6.1
2020-12-22	CVE-2020-14270	Improper Handling of Exceptional Conditions vulnerability in Hcltech Domino HCL Domino v9, v10, v11 is susceptible to an Information Disclosure vulnerability in XPages due to improper error handling of user input. network low complexity hcltech CWE-755	5.3
2020-12-18	CVE-2020-4080	Cross-site Scripting vulnerability in Hcltech Domino HCL Verse v10 and v11 is susceptible to a Stored Cross-Site Scripting (XSS) vulnerability due to improper handling of message content. network low complexity hcltech CWE-79	6.1
2020-12-01	CVE-2020-4128	Unspecified vulnerability in Hcltech Domino HCL Domino is susceptible to a lockout policy bypass vulnerability in the ID Vault service. network low complexity hcltech	5.3
2020-07-01	CVE-2017-1712	Inadequate Encryption Strength vulnerability in Hcltech Domino 9.0 "A vulnerability in the TLS protocol implementation of the Domino server could allow an unauthenticated, remote attacker to access sensitive information, aka a Return of Bleichenbacher's Oracle Threat (ROBOT) attack. network high complexity hcltech CWE-326	5.9