CVE-2020-14273

Опубликовано: 28 дек. 2020

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

HCL Domino is susceptible to a Denial of Service (DoS) vulnerability due to insufficient validation of input to its public API. An unauthenticated attacker could could exploit this vulnerability to crash the Domino server.

Ссылки

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085947
Exploit
Vendor Advisory
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085947
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:hcltech:domino:10.0.1:-:*:*:*:*:*:*

cpe:2.3:a:hcltech:domino:10.0.1:fix_pack_1:*:*:*:*:*:*

cpe:2.3:a:hcltech:domino:10.0.1:fix_pack_2:*:*:*:*:*:*

cpe:2.3:a:hcltech:domino:10.0.1:fix_pack_3:*:*:*:*:*:*

cpe:2.3:a:hcltech:domino:10.0.1:fix_pack_4:*:*:*:*:*:*

cpe:2.3:a:hcltech:domino:10.0.1:fix_pack_5:*:*:*:*:*:*

cpe:2.3:a:hcltech:domino:11.0.0:*:*:*:*:*:*:*

cpe:2.3:a:hcltech:domino:11.0.1:-:*:*:*:*:*:*

cpe:2.3:a:hcltech:domino:11.0.1:fix_pack_1:*:*:*:*:*:*

EPSS

Процентиль: 71%

0.00688

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-f92r-w6xq-p3pv

github

больше 3 лет назад

HCL Domino v10 and v11 is susceptible to a Denial of Service (DoS) vulnerability due to insufficient validation of input to its public API. An unauthenticated attacker could could exploit this vulnerability to crash the Domino server.