cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-27760,https://securityvulnerability.io/vulnerability/CVE-2021-27760,HCL Notes 11.0 - 11.0.1 FP4 Sametime Embedded chat clients are vulnerable to group chats loading script on restart,An issue was discovered in the Sametime chat feature in the Notes 11.0 - 11.0.1 FP4 clients. An authenticated Sametime chat user could cause Remote Code Execution on another chat client by sending a specially formatted message through chat containing Javascript code.,Hcl Software,Hcl Notes,4.6,MEDIUM,0.0009299999801442027,false,,false,false,false,,,false,false,,2022-05-06T18:15:00.000Z,0
CVE-2020-14224,https://securityvulnerability.io/vulnerability/CVE-2020-14224,Stack Buffer Overflow Vulnerability in HCL Notes Client,"A stack buffer overflow vulnerability exists in the MIME message handling of the HCL Notes v9 client. This issue may be exploited by an unauthenticated attacker, potentially allowing them to crash the Notes application or inject malicious code that executes with the privileges of the currently logged-in user. Users of HCL Notes v9 should be aware of this vulnerability to mitigate potential risks.",HCL Software,Hcl Notes,9.8,CRITICAL,0.00892999954521656,false,,false,false,false,,,false,false,,2020-12-18T22:11:54.000Z,0
CVE-2020-14232,https://securityvulnerability.io/vulnerability/CVE-2020-14232,Stack Buffer Overflow Vulnerability in HCL Notes by HCL Technologies,"A vulnerability in HCL Notes v9 arises from improper handling of input parameters, which can lead to a stack buffer overflow. An authenticated attacker could exploit this flaw to crash the application or inject malicious code that executes with the privileges of the logged-in user, potentially compromising system integrity and confidentiality.",HCL Software,Hcl Notes,8.8,HIGH,0.0009599999757483602,false,,false,false,false,,,false,false,,2020-12-18T00:15:00.000Z,0
CVE-2020-14268,https://securityvulnerability.io/vulnerability/CVE-2020-14268,Stack Buffer Overflow in HCL Notes Client Versions 9 and 10,"A vulnerability exists in the MIME message handling component of the HCL Notes Client (versions 9 and 10) that could be exploited by an unauthenticated attacker. If successfully exploited, this vulnerability may lead to a stack buffer overflow, enabling an attacker to potentially crash the client or inject malicious code that executes with the same privileges as the client. It is crucial for users and organizations using affected versions to apply necessary patches and review security configurations to mitigate risks.",HCL Software,Hcl Notes,9.8,CRITICAL,0.00892999954521656,false,,false,false,false,,,false,false,,2020-12-14T15:49:29.000Z,0
CVE-2020-4102,https://securityvulnerability.io/vulnerability/CVE-2020-4102,Buffer Overflow Vulnerability in HCL Notes Due to Input Validation Flaw,"HCL Notes is vulnerable to a buffer overflow issue in its DXL component, stemming from inadequate validation of user input. This weakness allows a malicious actor to potentially crash the application or execute arbitrary code on the client system, thereby compromising the security and integrity of user data. Organizations using HCL Notes should take immediate steps to evaluate their systems and apply necessary updates to safeguard against potential exploits.",HCL Software,Hcl Notes,6.7,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2020-12-02T00:56:42.000Z,0
CVE-2020-14258,https://securityvulnerability.io/vulnerability/CVE-2020-14258,Denial of Service Risk in HCL Notes by HCL Technologies,"HCL Notes is exposed to a Denial of Service vulnerability due to inadequate validation of user-supplied input. This flaw allows remote unauthenticated attackers to exploit the weakness through carefully crafted email messages, which can cause the client application to become unresponsive. Affected versions include 9, 10, and 11, making it crucial for users to apply security measures to mitigate potential attacks.",HCL Software,Hcl Notes,7.5,HIGH,0.0017900000093504786,false,,false,false,false,,,false,false,,2020-11-21T17:24:31.000Z,0
CVE-2020-4097,https://securityvulnerability.io/vulnerability/CVE-2020-4097,Buffer Overflow Vulnerability in HCL Notes Client,"In specific versions of HCL Notes, a vulnerability exists in how the Notes Client handles input parameters. Attackers may exploit this to perform a buffer overflow, potentially leading to the application crashing or allowing the execution of arbitrary code on the system. This vulnerability poses a significant risk, especially when operating in environments that utilize HCL Notes for critical business operations.",HCL Software,Hcl Notes,6.8,MEDIUM,0.0007900000200606883,false,,false,false,false,,,false,false,,2020-11-05T16:45:02.000Z,0
CVE-2020-14240,https://securityvulnerability.io/vulnerability/CVE-2020-14240,Stored Cross-Site Scripting Vulnerability in HCL Notes,"HCL Notes versions prior to 9.0.1 FP10 IF8, 10.0.1 FP6, and 11.0.1 FP1 are vulnerable to a stored cross-site scripting issue, allowing an attacker to embed malicious scripts. These scripts may be executed in the context of a user's browser, potentially compromising user sessions by stealing cookie-based authentication credentials and exposing sensitive information.",HCL Software,Hcl Notes,6.1,MEDIUM,0.0007800000021234155,false,,false,false,false,,,false,false,,2020-11-05T16:20:20.000Z,0
CVE-2020-4089,https://securityvulnerability.io/vulnerability/CVE-2020-4089,Information Leakage in HCL Notes Affects Multiple Versions,"HCL Notes is susceptible to information leakage via the 'mailto' protocol, which may allow unauthorized third parties to access files from the user's local filesystem or connected network filesystems. This issue affects all versions of HCL Notes 9, 10, and 11, potentially exposing sensitive data if exploited.",HCL Software,Hcl Notes,6.5,MEDIUM,0.0015699999639764428,false,,false,false,false,,,false,false,,2020-06-26T23:15:00.000Z,0