CVE-2010-0275

Ultra-light Mode in IBM Lotus iNotes (aka Domino Web Access or DWA) before 229.241 for Domino 8.0.2 FP3 does not properly handle script commands in the status-alerts URL, which has unspecified impact and attack vectors, aka SPR LSHR7TBM58.

Published: Jan 9, 2010
Updated: Apr 13, 2023
CVE: CVE-2010-0275
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
ibm / lotus_inotes	-	229.231.x
ibm / lotus_inotes	229.011	229.011.x
ibm / lotus_inotes	229.021	229.021.x
ibm / lotus_inotes	229.031	229.031.x
ibm / lotus_inotes	229.041	229.041.x
ibm / lotus_inotes	229.051	229.051.x
ibm / lotus_inotes	229.061	229.061.x
ibm / lotus_inotes	229.101	229.101.x
ibm / lotus_inotes	229.111	229.111.x
ibm / lotus_inotes	229.131	229.131.x
ibm / lotus_inotes	229.141	229.141.x
ibm / lotus_inotes	229.151	229.151.x
ibm / lotus_inotes	229.161	229.161.x
ibm / lotus_inotes	229.171	229.171.x
ibm / lotus_inotes	229.181	229.181.x
ibm / lotus_inotes	229.191	229.191.x
ibm / lotus_inotes	229.201	229.201.x
ibm / lotus_inotes	229.211	229.211.x
ibm / lotus_inotes	229.221	229.221.x

Vulnerability Database

289,697

CVE-2010-0275