PT-2020-13945 · Hcl · Hcl Domino

Published

2020-11-21

Updated

2020-12-01

CVE-2020-14230

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions HCL Domino versions prior to 9.0.1 FP10 IF6 HCL Domino versions prior to 10.0.1 FP5 HCL Domino versions prior to 11.0.1

Description HCL Domino is susceptible to a Denial of Service issue caused by improper validation of user-supplied input. A remote unauthenticated attacker could exploit this using a specially-crafted email message to hang the server.

Recommendations For versions prior to 9.0.1 FP10 IF6, update to 9.0.1 FP10 IF6 or later. For versions prior to 10.0.1 FP5, update to 10.0.1 FP5 or later. For versions prior to 11.0.1, update to 11.0.1 or later.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2020-14230

Affected Products

Hcl Domino

PT-2020-13945 · Hcl · Hcl Domino

CVE-2020-14230

Weakness Enumeration

Related Identifiers

Affected Products

References · 5