GCVE - cpe:2.3:a:hcltech:notes:9.0.1:fp10:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:hcltech:notes:9.0.1:fp10:*:*:*:*:*:*

part: a version: 9.0.1 update: fp10

Vendor	Hcltech (`be2dce80-cb79-5854-9fe6-9b4a1139ec3e`)
Product	Notes (`8f37f858-7231-5391-ba6c-a21e67937a5f`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-44755`	vulnerable	2026-06-03 14:48:17.933933	HCL Notes is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView CRITICAL (9.8) HCL Notes is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView. This could allow a remote unauthenticated attacker to crash the application or execute arbitrary code via a crafted Lotus Ami Pro file. This is different from the vulnerability described in CVE-2022-44751. This vulnerability applies to software previously licensed by IBM. Published: 2022-12-17T01:57:45.446Z Updated: 2025-04-17T14:31:34.058Z Open on db.gcve.eu Reference links https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0100260	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-44753`	vulnerable	2026-06-03 14:48:17.931740	HCL Notes is susceptible to a stack based buffer overflow vulnerability in wp6sr.dll in Micro Focus KeyView CRITICAL (9.8) HCL Notes is susceptible to a stack based buffer overflow vulnerability in wp6sr.dll in Micro Focus KeyView. This could allow a remote unauthenticated attacker to crash the application or execute arbitrary code via a crafted WordPerfect file. This vulnerability applies to software previously licensed by IBM. Published: 2022-12-17T01:52:52.495Z Updated: 2025-04-17T14:32:13.332Z Open on db.gcve.eu Reference links https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0100260	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-44751`	vulnerable	2026-06-03 14:48:17.911941	HCL Notes is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView CRITICAL (9.8) HCL Notes is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView. This could allow a remote unauthenticated attacker to crash the application or execute arbitrary code via a crafted Lotus Ami Pro file. This is different from the vulnerability described in CVE-2022-44755. This vulnerability applies to software previously licensed by IBM. Published: 2022-12-17T01:48:38.704Z Updated: 2025-04-17T14:32:37.793Z Open on db.gcve.eu Reference links https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0100260	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-4097`	vulnerable	2026-06-03 14:42:48.868813	Details available In HCL Notes version 9 previous to release 9.0.1 FixPack 10 Interim Fix 8, version 10 previous to release 10.0.1 FixPack 6 and version 11 previous to 11.0.1 FixPack 1, a vulnerability in the input parameter handling of the Notes Client could potentially be exploited by an attacker resulting in a buffer overflow. This could enable an attacker to crash HCL Notes or execute attacker-controlled code on the client. Published: 2020-11-05T16:45:02.000Z Updated: 2024-08-04T07:52:20.916Z Open on db.gcve.eu Reference links https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0084796	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-14268`	vulnerable	2026-06-03 14:41:43.348384	Details available A vulnerability in the MIME message handling of the Notes client (versions 9 and 10) could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow. This could allow a remote attacker to crash the client or inject code into the system which would execute with the privileges of the client. Published: 2020-12-14T15:49:29.000Z Updated: 2024-08-04T12:39:36.270Z Open on db.gcve.eu Reference links https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085762	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-14240`	vulnerable	2026-06-03 14:41:43.312828	Details available HCL Notes versions previous to releases 9.0.1 FP10 IF8, 10.0.1 FP6 and 11.0.1 FP1 is susceptible to a Stored Cross-site Scripting (XSS) vulnerability. An attacker could use this vulnerability to execute script in a victim's Web browser within the security context of the hosting Web site and/or steal the victim's cookie-based authentication credentials. Published: 2020-11-05T16:20:20.000Z Updated: 2024-08-04T12:39:36.225Z Open on db.gcve.eu Reference links https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0084789	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-14232`	vulnerable	2026-06-03 14:41:43.304744	Details available A vulnerability in the input parameter handling of HCL Notes v9 could potentially be exploited by an authenticated attacker resulting in a stack buffer overflow. This could allow the attacker to crash the program or inject code into the system which would execute with the privileges of the currently logged in user. Published: 2020-12-17T23:59:59.000Z Updated: 2024-08-04T12:39:36.216Z Open on db.gcve.eu Reference links https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085883	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.