CVE-2020-14270

HCL Domino v9, v10, v11 is susceptible to an Information Disclosure vulnerability in XPages due to improper error handling of user input. An unauthenticated attacker could exploit this vulnerability to obtain information about the XPages software running on the Domino server.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
HCLCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 54%
VendorProductVersion
hcltechdomino
9.0.0 ≤
𝑥
≤ 10.0.0
hcltechdomino
10.0.1
hcltechdomino
10.0.1:fix_pack_1
hcltechdomino
10.0.1:fix_pack_2
hcltechdomino
10.0.1:fix_pack_3
hcltechdomino
10.0.1:fix_pack_4
hcltechdomino
11.0.0
hcltechdomino
11.0.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085881
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085881