CVE-2022-44750

HCL Domino is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView.  This could allow a remote unauthenticated attacker to crash the application or execute arbitrary code via a crafted Lotus Ami Pro file. This is different from the vulnerability described in CVE-2022-44754. Thisvulnerabilityapplies to software previously licensed by IBM.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
HCLCNA
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 84%
VendorProductVersion
hcltechdomino
9.0
hcltechdomino
9.0.1
hcltechdomino
9.0.1
hcltechdomino
9.0.1:feature_pack_10_interim_fix_3
hcltechdomino
9.0.1:feature_pack_10_interim_fix_4
hcltechdomino
9.0.1:feature_pack_10_interim_fix_5
hcltechdomino
9.0.1:feature_pack_8
hcltechdomino
9.0.1:feature_pack_8_interim_fix_1
hcltechdomino
9.0.1:feature_pack_8_interim_fix_2
hcltechdomino
9.0.1:feature_pack_8_interim_fix_3
hcltechdomino
9.0.1:fixpack_10
hcltechdomino
9.0.1:fixpack_3
hcltechdomino
9.0.1:fixpack_4
hcltechdomino
9.0.1:fixpack_5
hcltechdomino
9.0.1:fixpack_6
hcltechdomino
9.0.1:fixpack_7
hcltechdomino
9.0.1:fixpack_8
hcltechdomino
9.0.1:fixpack_9
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0102151
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0102151