CVE-2020-14232
HIGHHCL Notes v9 - Authenticated Stack Buffer Overflow via Input Parameter Handling
Title source: llmDescription
A vulnerability in the input parameter handling of HCL Notes v9 could potentially be exploited by an authenticated attacker resulting in a stack buffer overflow. This could allow the attacker to crash the program or inject code into the system which would execute with the privileges of the currently logged in user.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085883
Scores
CVSS v3
8.8
EPSS
0.0084
EPSS Percentile
75.0%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
Status
published
Products (2)
hcltech/notes
9.0
hcltech/notes
9.0.1 (9 CPE variants)
Published
Dec 18, 2020
Tracked Since
Feb 18, 2026