VYPR
Unrated severityNVD Advisory· Published Nov 30, 2020· Updated Aug 4, 2024

CVE-2020-4127

CVE-2020-4127

Description

HCL Domino is susceptible to a Login CSRF vulnerability. With a valid credential, an attacker could trick a user into accessing a system under another ID or use an intranet user's system to access internal systems from the internet. Fixes are available in HCL Domino versions 9.0.1 FP10 IF6, 10.0.1 FP6 and 11.0.1 FP1 and later.

Affected products

2
  • HCL/Dominodescription
  • Lotus/Dominollm-fuzzy
    Range: < 9.0.1 FP10 IF6, < 10.0.1 FP6, < 11.0.1 FP1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.