Unrated severityNVD Advisory· Published Nov 4, 2022· Updated May 2, 2025
HCL Domino is susceptible to an information disclosure vulnerability
CVE-2022-38654
Description
HCL Domino is susceptible to an information disclosure vulnerability. In some scenarios, local calls made on the server to search the Domino directory will ignore xACL read restrictions. An authenticated attacker could leverage this vulnerability to access attributes from a user's person record.
Affected products
2- HCL Software/HCL Dominov5Range: 9, 10, 11, 12
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.