Vulnerabilities > IBM > Inotes > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-07-01 CVE-2017-1659 Cross-site Scripting vulnerability in IBM Inotes
"HCL iNotes is susceptible to a Cross-Site Scripting (XSS) Vulnerability.
network
low complexity
ibm CWE-79
6.1
6.1
2018-07-11 CVE-2013-0594 Open Redirect vulnerability in IBM Inotes
Open redirect vulnerability in IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
network
low complexity
ibm CWE-601
6.1
6.1
2018-07-11 CVE-2013-0592 Cross-site Scripting vulnerability in IBM Inotes
Cross-site scripting (XSS) vulnerability in IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
network
low complexity
ibm CWE-79
5.4
5.4
2017-12-13 CVE-2017-1421 Cross-site Scripting vulnerability in IBM Inotes
IBM iNotes is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
6.1
6.1
2017-09-05 CVE-2017-1130 Unspecified vulnerability in IBM Inotes
IBM Notes 8.5 and 9.0 is vulnerable to a denial of service.
network
low complexity
ibm
6.5
6.5
2017-09-05 CVE-2017-1129 Unspecified vulnerability in IBM Expeditor and Inotes
IBM Notes 8.5 and 9.0 is vulnerable to a denial of service.
network
low complexity
ibm
6.5
6.5
2017-08-03 CVE-2017-1327 Cross-site Scripting vulnerability in IBM Inotes
IBM iNotes 8.5 and 9.0 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
6.1
6.1
2017-07-31 CVE-2017-1332 Cross-site Scripting vulnerability in IBM Inotes
IBM iNotes 8.5 and 9.0 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
6.1
6.1
2017-06-12 CVE-2017-1214 Information Exposure vulnerability in IBM Inotes
IBM iNotes 8.5 and 9.0 could allow a remote attacker to send a malformed email to a victim, that when opened could cause an information disclosure.
network
low complexity
ibm CWE-200
5.7
5.7
2017-05-26 CVE-2017-1325 Cross-site Scripting vulnerability in IBM Inotes
IBM iNotes 8.5 and 9.0 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
6.1
6.1