Vulnerabilities > IBM > Inotes > 8.5.1.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-07-01 | CVE-2017-1659 | Cross-site Scripting vulnerability in IBM Inotes "HCL iNotes is susceptible to a Cross-Site Scripting (XSS) Vulnerability. | 4.3 |
| 2018-07-11 | CVE-2013-0594 | Open Redirect vulnerability in IBM Inotes Open redirect vulnerability in IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. | 5.8 |
| 2018-07-11 | CVE-2013-0592 | Cross-site Scripting vulnerability in IBM Inotes Cross-site scripting (XSS) vulnerability in IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 3.5 |
| 2018-07-11 | CVE-2013-0589 | Information Exposure vulnerability in IBM Inotes IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to bypass the remote image filtering mechanism and obtain sensitive information via a crafted e-mail message. | 5.0 |
| 2017-09-05 | CVE-2017-1130 | Unspecified vulnerability in IBM Inotes IBM Notes 8.5 and 9.0 is vulnerable to a denial of service. network ibm | 4.3 |
| 2017-09-05 | CVE-2017-1129 | Unspecified vulnerability in IBM Expeditor and Inotes IBM Notes 8.5 and 9.0 is vulnerable to a denial of service. network ibm | 4.3 |
| 2017-08-03 | CVE-2017-1327 | Cross-site Scripting vulnerability in IBM Inotes IBM iNotes 8.5 and 9.0 is vulnerable to cross-site scripting. | 4.3 |
| 2017-07-31 | CVE-2017-1332 | Cross-site Scripting vulnerability in IBM Inotes IBM iNotes 8.5 and 9.0 is vulnerable to cross-site scripting. | 4.3 |
| 2017-06-12 | CVE-2017-1214 | Information Exposure vulnerability in IBM Inotes IBM iNotes 8.5 and 9.0 could allow a remote attacker to send a malformed email to a victim, that when opened could cause an information disclosure. | 3.5 |
| 2017-05-26 | CVE-2017-1325 | Cross-site Scripting vulnerability in IBM Inotes IBM iNotes 8.5 and 9.0 is vulnerable to cross-site scripting. | 4.3 |