GCVE - cpe:2.3:a:hcltech:notes:9.0.1:fp2if2:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:hcltech:notes:9.0.1:fp2if2:*:*:*:*:*:*

part: a version: 9.0.1 update: fp2if2

Vendor	Hcltech (`be2dce80-cb79-5854-9fe6-9b4a1139ec3e`)
Product	Notes (`8f37f858-7231-5391-ba6c-a21e67937a5f`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-44755`	vulnerable	2026-06-03 14:48:17.934172	HCL Notes is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView CRITICAL (9.8) HCL Notes is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView. This could allow a remote unauthenticated attacker to crash the application or execute arbitrary code via a crafted Lotus Ami Pro file. This is different from the vulnerability described in CVE-2022-44751. This vulnerability applies to software previously licensed by IBM. Published: 2022-12-17T01:57:45.446Z Updated: 2025-04-17T14:31:34.058Z Open on db.gcve.eu Reference links https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0100260	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-44753`	vulnerable	2026-06-03 14:48:17.931973	HCL Notes is susceptible to a stack based buffer overflow vulnerability in wp6sr.dll in Micro Focus KeyView CRITICAL (9.8) HCL Notes is susceptible to a stack based buffer overflow vulnerability in wp6sr.dll in Micro Focus KeyView. This could allow a remote unauthenticated attacker to crash the application or execute arbitrary code via a crafted WordPerfect file. This vulnerability applies to software previously licensed by IBM. Published: 2022-12-17T01:52:52.495Z Updated: 2025-04-17T14:32:13.332Z Open on db.gcve.eu Reference links https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0100260	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-44751`	vulnerable	2026-06-03 14:48:17.918597	HCL Notes is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView CRITICAL (9.8) HCL Notes is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView. This could allow a remote unauthenticated attacker to crash the application or execute arbitrary code via a crafted Lotus Ami Pro file. This is different from the vulnerability described in CVE-2022-44755. This vulnerability applies to software previously licensed by IBM. Published: 2022-12-17T01:48:38.704Z Updated: 2025-04-17T14:32:37.793Z Open on db.gcve.eu Reference links https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0100260	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-4097`	vulnerable	2026-06-03 14:42:48.876009	Details available In HCL Notes version 9 previous to release 9.0.1 FixPack 10 Interim Fix 8, version 10 previous to release 10.0.1 FixPack 6 and version 11 previous to 11.0.1 FixPack 1, a vulnerability in the input parameter handling of the Notes Client could potentially be exploited by an attacker resulting in a buffer overflow. This could enable an attacker to crash HCL Notes or execute attacker-controlled code on the client. Published: 2020-11-05T16:45:02.000Z Updated: 2024-08-04T07:52:20.916Z Open on db.gcve.eu Reference links https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0084796	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-14268`	vulnerable	2026-06-03 14:41:43.348584	Details available A vulnerability in the MIME message handling of the Notes client (versions 9 and 10) could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow. This could allow a remote attacker to crash the client or inject code into the system which would execute with the privileges of the client. Published: 2020-12-14T15:49:29.000Z Updated: 2024-08-04T12:39:36.270Z Open on db.gcve.eu Reference links https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085762	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-14240`	vulnerable	2026-06-03 14:41:43.316265	Details available HCL Notes versions previous to releases 9.0.1 FP10 IF8, 10.0.1 FP6 and 11.0.1 FP1 is susceptible to a Stored Cross-site Scripting (XSS) vulnerability. An attacker could use this vulnerability to execute script in a victim's Web browser within the security context of the hosting Web site and/or steal the victim's cookie-based authentication credentials. Published: 2020-11-05T16:20:20.000Z Updated: 2024-08-04T12:39:36.225Z Open on db.gcve.eu Reference links https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0084789	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.