HCL Technologies Domino 11.0.1
Approved changes feed: RSS · Atom
cpe:2.3:a:hcltech:domino:11.0.1:-:*:*:*:*:*:*
part: a version: 11.0.1 update: -
| Vendor | Hcltech (be2dce80-cb79-5854-9fe6-9b4a1139ec3e) |
|---|---|
| Product | Domino (64e94e2d-b9df-556f-9df8-a791175e22d2) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2022-38654 |
vulnerable | 2026-06-03 14:47:49.988460 |
HCL Domino is susceptible to an information disclosure vulnerability
MEDIUM (5.5)
HCL Domino is susceptible to an information disclosure vulnerability. In some scenarios, local calls made on the server to search the Domino directory will ignore xACL read restrictions. An authenticated attacker could leverage this vulnerability to access attributes from a user's person record.
Published: 2022-11-04T20:19:37.257Z
Updated: 2025-05-02T18:33:33.783Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-27547 |
vulnerable | 2026-06-03 14:46:47.459411 |
HCL iNotes is susceptible to a link to non-existent domain vulnerability.
MEDIUM (6.1)
HCL iNotes is susceptible to a link to non-existent domain vulnerability. An attacker could use this vulnerability to trick a user into supplying sensitive information such as username, password, credit card number, etc.
Published: 2022-08-29T16:00:28.303Z
Updated: 2024-09-17T02:01:17.904Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-27546 |
vulnerable | 2026-06-03 14:46:47.453926 |
HCL iNotes is susceptible to a Reflected Cross-site Scripting (XSS) vulnerability
HIGH (8.3)
HCL iNotes is susceptible to a Reflected Cross-site Scripting (XSS) vulnerability caused by improper validation of user-supplied input supplied with a form POST request. A remote attacker could exploit this vulnerability using a specially-crafted URL to execute script in a victim's web browser within the security context of the hosting web site and/or steal the victim's cookie-based authentication credentials.
Published: 2022-08-29T16:00:24.786Z
Updated: 2024-09-17T03:39:06.738Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-4080 |
vulnerable | 2026-06-03 14:42:48.831005 |
Details available
HCL Verse v10 and v11 is susceptible to a Stored Cross-Site Scripting (XSS) vulnerability due to improper handling of message content. An unauthenticated remote attacker could exploit this vulnerability using specially-crafted markup to execute script in a victim's web browser within the security context of the hosting Web site and/or steal the victim's cookie-based authentication credentials.
Published: 2020-12-18T21:14:49.000Z
Updated: 2024-08-04T07:52:20.921Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-14273 |
vulnerable | 2026-06-03 14:41:43.361709 |
Details available
HCL Domino is susceptible to a Denial of Service (DoS) vulnerability due to insufficient validation of input to its public API. An unauthenticated attacker could could exploit this vulnerability to crash the Domino server.
Published: 2020-12-28T19:06:36.000Z
Updated: 2024-08-04T12:39:36.260Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-14270 |
vulnerable | 2026-06-03 14:41:43.355891 |
Details available
HCL Domino v9, v10, v11 is susceptible to an Information Disclosure vulnerability in XPages due to improper error handling of user input. An unauthenticated attacker could exploit this vulnerability to obtain information about the XPages software running on the Domino server.
Published: 2020-12-22T20:06:31.000Z
Updated: 2024-08-04T12:39:36.259Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.