CVE-2020-4102 | SynScan

Vulnerability Database

289,871

Total vulnerabilities in the database

CVE-2020-4102

HCL Notes is susceptible to a Buffer Overflow vulnerability in DXL due to improper validation of user input. A successful exploit could enable an attacker to crash Notes or execute attacker-controlled code on the client system.

Published: Dec 2, 2020
Updated: Apr 14, 2023
CVE: CVE-2020-4102
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.7
AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-120

Affected Software
References

Software	From	Fixed in
hcltech / notes	11.0	11.0.x
hcltech / notes	10.0	10.0.x
hcltech / notes	10.0.1-fp4	10.0.1-fp4.x
hcltech / notes	10.0.1-fp3	10.0.1-fp3.x
hcltech / notes	10.0.1-fp2	10.0.1-fp2.x
hcltech / notes	10.0.1-fp1	10.0.1-fp1.x
hcltech / notes	10.0.1-fp5	10.0.1-fp5.x
hcltech / notes	9.0.0	9.0.1.x
hcltech / notes	10.0.1	10.0.1.x
hcltech / notes	11.0.1	11.0.1.x

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085499