CVE-2020-14273
HIGH WAF: Medium
CVSS 7.5
Published: 2020-12-28
CWE-20
HCL Domino is susceptible to a Denial of Service (DoS) vulnerability due to insufficient validation of input to its public API. An unauthenticated attacker could could exploit this vulnerability to crash the Domino server.
WAF Coverage Analysis
Improper Input Validation
Medium WAF Coverage
OWASP: A03:2021 Injection
920xxx - Protocol Enforcement 941xxx - XSS / XXE 942xxx - SQL Injection
Affected Software
| Vendor | Product | Version |
|---|---|---|
| hcltech | domino | 10.0.1 |
| hcltech | domino | 10.0.1 |
| hcltech | domino | 10.0.1 |
| hcltech | domino | 10.0.1 |
| hcltech | domino | 10.0.1 |
| hcltech | domino | 10.0.1 |
| hcltech | domino | 11.0.0 |
| hcltech | domino | 11.0.1 |
| hcltech | domino | 11.0.1 |
References
- support.hcltechsw.com (Exploit, Vendor Advisory)