hcltech

410 tracked vulnerabilities.

CVE-2020-4126 MEDIUM
HCL iNotes 9.0-10.0.1 - Unauthenticated Sensitive Cookie Exposure via HTTP Session Interception
Dec 01, 2020
CVSS 5.9
EPSS 0.01
CVE-2020-4127 MEDIUM
HCL Domino < 9.0.1 - Cross-Site Request Forgery in Login
Nov 30, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-14258 HIGH
HCL Notes 9-11 - Unauthenticated Denial of Service via Crafted Email Message
Nov 21, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-14234 HIGH
HCL Domino < 9.0.1 FP10 IF6 and < 10.0.1 - Denial of Service via Improper Input Validation
Nov 21, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-14230 HIGH
HCL Domino - Denial of Service via Crafted Email Message
Nov 21, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-4097 MEDIUM
HCL Notes 9.0-9.0.1, 10.0-10.0.1, 11.0-11.0.1 - Buffer Overflow via Input Parameter Handling
Nov 05, 2020
CVSS 6.8
EPSS 0.00
CVE-2020-14240 MEDIUM
HCL Notes < 9.0.1 FP10 IF8, 10.0.1 < FP6, 11.0.1 < FP1 - Stored Cross-Site Scripting
Nov 05, 2020
CVSS 6.1
EPSS 0.01
CVE-2020-14222 MEDIUM
HCL Digital Experience 8.5, 9.0, 9.5 - Reflected Cross-Site Scripting
Nov 05, 2020
CVSS 6.1
EPSS 0.01
CVE-2020-14223 MEDIUM
HCL Digital Experience 8.5, 9.0, 9.5 - Reflected Cross-Site Scripting
Oct 01, 2020
CVSS 6.1
EPSS 0.01
CVE-2020-4104 MEDIUM
HCL BigFix WebUI - Stored Cross-Site Scripting in Apps->Software Module
Jul 17, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4095 MEDIUM
HCL BigFix Platform 9.2-9.2.18 - Insufficiently Protected Credentials in Memory
Jul 16, 2020
CVSS 6.0
EPSS 0.00
CVE-2020-4089 MEDIUM
HCL Notes 9-11 - Information Leakage via Mailto Protocol Handler
Jun 26, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-4101 CRITICAL
HCL Digital Experience - Server-Side Request Forgery
Jun 11, 2020
CVSS 9.8
EPSS 0.01
CVE-2020-4092 MEDIUM
HCL Nomad - Cleartext Transmission of Sensitive Information
May 06, 2020
CVSS 5.3
EPSS 0.00
CVE-2020-4085 MEDIUM
HCL Connections - Information Disclosure via Stack Trace
Apr 22, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-4084 MEDIUM
HCL Connections 5.5, 6.0, 6.5 - Stored Cross-Site Scripting
Mar 09, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4083 MEDIUM
HCL Connections 6.5 - Sensitive Information Disclosure via Trace Logs
Mar 05, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-4082 MEDIUM
HCL Connections 5.5 - Cross-Site Scripting in Help System
Mar 05, 2020
CVSS 5.4
EPSS 0.01
CVE-2019-4326 HIGH
HCL AppScan Enterprise - Info Disclosure
Oct 06, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-4325 MEDIUM
HCL AppScan Enterprise - Info Disclosure
Oct 06, 2020
CVSS 5.3
EPSS 0.01
CVE-2019-4091 MEDIUM
HCL Marketing Platform 10.1.0-10.1.0.3 - Stored Cross-Site Scripting in User Addition and Search
Jul 17, 2020
CVSS 5.4
EPSS 0.01
CVE-2019-4090 MEDIUM
HCL Marketing Campaign 10.1.0-10.1.0.2 - Stored Cross-Site Scripting in Campaign Description Field
Jul 17, 2020
CVSS 5.4
EPSS 0.01
CVE-2019-4324 MEDIUM
HCL AppScan Enterprise < 10.0.0 - Cross-Site Scripting via Crafted Test Policy Import
Jul 07, 2020
CVSS 6.1
EPSS 0.01
CVE-2019-4323 MEDIUM
HCL AppScan < 10.0.0 - Clickjacking via API Documentation
Jul 07, 2020
CVSS 4.3
EPSS 0.01
CVE-2019-4209 MEDIUM
HCL Connections 5.5, 6.0, 6.5 - Open Redirect
May 01, 2020
CVSS 6.1
EPSS 0.01