CVE-2020-14232

A vulnerability in the input parameter handling of HCL Notes v9 could potentially be exploited by an authenticated attacker resulting in a stack buffer overflow. This could allow the attacker to crash the program or inject code into the system which would execute with the privileges of the currently logged in user.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.8 HIGH
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
HCLCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 73%
VendorProductVersion
hcltechnotes
9.0
hcltechnotes
9.0.1
hcltechnotes
9.0.1:fp10
hcltechnotes
9.0.1:fp10if1
hcltechnotes
9.0.1:fp10if2
hcltechnotes
9.0.1:fp10if3
hcltechnotes
9.0.1:fp10if4
hcltechnotes
9.0.1:fp10if5
hcltechnotes
9.0.1:fp10if6
hcltechnotes
9.0.1:fp10if7
𝑥
= Vulnerable software versions
References
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085883
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085883