Vulnerabilities > Hcltech > Notes > 10.0

DATE CVE VULNERABILITY TITLE RISK
2020-12-14 CVE-2020-14268 Out-of-bounds Write vulnerability in Hcltech Notes
A vulnerability in the MIME message handling of the Notes client (versions 9 and 10) could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow.
network
low complexity
hcltech CWE-787
critical
9.8
2020-12-02 CVE-2020-4102 Classic Buffer Overflow vulnerability in Hcltech Notes
HCL Notes is susceptible to a Buffer Overflow vulnerability in DXL due to improper validation of user input.
local
low complexity
hcltech CWE-120
6.7
2020-11-21 CVE-2020-14258 Improper Input Validation vulnerability in Hcltech Notes 10.0/11.0/9.0
HCL Notes is susceptible to a Denial of Service vulnerability caused by improper validation of user-supplied input.
network
low complexity
hcltech CWE-20
7.5
2020-11-05 CVE-2020-14240 Cross-site Scripting vulnerability in Hcltech Notes
HCL Notes versions previous to releases 9.0.1 FP10 IF8, 10.0.1 FP6 and 11.0.1 FP1 is susceptible to a Stored Cross-site Scripting (XSS) vulnerability.
network
low complexity
hcltech CWE-79
6.1
2020-06-26 CVE-2020-4089 Unspecified vulnerability in Hcltech Notes 10.0/11.0/9.0
HCL Notes is vulnerable to an information leakage vulnerability through its support for the 'mailto' protocol.
network
low complexity
hcltech
6.5