Denial of Service Risk in HCL Notes by HCL Technologies
CVE-2020-14258

7.5HIGH

Key Information:

Vendor: HCL Software
Status: Hcl Notes
Vendor: CVE Published:; 21 November 2020

Summary

HCL Notes is exposed to a Denial of Service vulnerability due to inadequate validation of user-supplied input. This flaw allows remote unauthenticated attackers to exploit the weakness through carefully crafted email messages, which can cause the client application to become unresponsive. Affected versions include 9, 10, and 11, making it crucial for users to apply security measures to mitigate potential attacks.

Affected Version(s)

HCL Notes v9

HCL Notes v10

HCL Notes v11

References

https://support.hcltechsw.com/csm?id=kb_article&sysparm_a...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 21, 2020
Vulnerability Reserved
Jun 17, 2020