CVE-2020-14268

A vulnerability in the MIME message handling of the Notes client (versions 9 and 10) could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow. This could allow a remote attacker to crash the client or inject code into the system which would execute with the privileges of the client.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
HCLCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 81%
VendorProductVersion
hcltechnotes
9.0 ≤
𝑥
< 9.0.1
hcltechnotes
10.0 ≤
𝑥
< 10.0.1
hcltechnotes
9.0.1
hcltechnotes
9.0.1:fp10
hcltechnotes
9.0.1:fp10if1
hcltechnotes
9.0.1:fp10if2
hcltechnotes
9.0.1:fp10if3
hcltechnotes
9.0.1:fp10if4
hcltechnotes
9.0.1:fp10if5
hcltechnotes
9.0.1:fp10if6
hcltechnotes
9.0.1:fp10if7
hcltechnotes
9.0.1:fp1if1
hcltechnotes
9.0.1:fp1if2
hcltechnotes
9.0.1:fp2if1
hcltechnotes
9.0.1:fp2if2
hcltechnotes
9.0.1:fp2if3
hcltechnotes
9.0.1:fp2if4
hcltechnotes
9.0.1:fp3if1
hcltechnotes
9.0.1:fp3if2
hcltechnotes
9.0.1:fp3if3
hcltechnotes
9.0.1:fp3if4
hcltechnotes
9.0.1:fp4if1
hcltechnotes
9.0.1:fp4if2
hcltechnotes
9.0.1:fp5if1
hcltechnotes
9.0.1:fp5if2
hcltechnotes
9.0.1:fp5if3
hcltechnotes
9.0.1:fp7if1
hcltechnotes
9.0.1:fp7if2
hcltechnotes
9.0.1:fp8if1
hcltechnotes
9.0.1:fp9if1
hcltechnotes
9.0.1:fp9if2
hcltechnotes
10.0.1
hcltechnotes
10.0.1:fp1
hcltechnotes
10.0.1:fp2
hcltechnotes
10.0.1:fp3
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085762
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085762