Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2022-38654

HCL Domino is susceptible to an information disclosure vulnerability. In some scenarios, local calls made on the server to search the Domino directory will ignore xACL read restrictions. An authenticated attacker could leverage this vulnerability to access attributes from a user's person record.

  • Published: Nov 4, 2022
  • Updated: Nov 8, 2023
  • CVE: CVE-2022-38654
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.5
  • AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

No CWE or OWASP classifications available.

Software From Fixed in
hcltech / domino 10.0.1 10.0.1.x
hcltech / domino 9.0.1 9.0.1.x
hcltech / domino 9.0.1-feature_pack_10_interim_fix_3 9.0.1-feature_pack_10_interim_fix_3.x
hcltech / domino 9.0.1-feature_pack_10_interim_fix_4 9.0.1-feature_pack_10_interim_fix_4.x
hcltech / domino 9.0.1-feature_pack_8 9.0.1-feature_pack_8.x
hcltech / domino 9.0.1-feature_pack_8_interim_fix_1 9.0.1-feature_pack_8_interim_fix_1.x
hcltech / domino 9.0.1-feature_pack_8_interim_fix_2 9.0.1-feature_pack_8_interim_fix_2.x
hcltech / domino 9.0.1-feature_pack_8_interim_fix_3 9.0.1-feature_pack_8_interim_fix_3.x
hcltech / domino 9.0.1-feature_pack_10_interim_fix_5 9.0.1-feature_pack_10_interim_fix_5.x
hcltech / domino 11.0.1 11.0.1.x
hcltech / domino 10.0.0 10.0.0.x
hcltech / domino 9.0.1-fixpack_3 9.0.1-fixpack_3.x
hcltech / domino 9.0.1-fixpack_4 9.0.1-fixpack_4.x
hcltech / domino 9.0.1-fixpack_5 9.0.1-fixpack_5.x
hcltech / domino 9.0.1-fixpack_6 9.0.1-fixpack_6.x
hcltech / domino 9.0.1-fixpack_7 9.0.1-fixpack_7.x
hcltech / domino 9.0.1-fixpack_8 9.0.1-fixpack_8.x
hcltech / domino 9.0.1-fixpack_9 9.0.1-fixpack_9.x
hcltech / domino 10.0.1-fixpack_1 10.0.1-fixpack_1.x
hcltech / domino 10.0.1-fixpack_2 10.0.1-fixpack_2.x
hcltech / domino 10.0.1-fixpack_3 10.0.1-fixpack_3.x
hcltech / domino 10.0.1-fixpack_4 10.0.1-fixpack_4.x
hcltech / domino 10.0.1-fixpack_5 10.0.1-fixpack_5.x
hcltech / domino 10.0.1-fixpack_6 10.0.1-fixpack_6.x
hcltech / domino 10.0.1-fixpack_7 10.0.1-fixpack_7.x
hcltech / domino 11.0.1-fixpack_1 11.0.1-fixpack_1.x
hcltech / domino 11.0.1-fixpack_2 11.0.1-fixpack_2.x
hcltech / domino 11.0.1-fixpack_3 11.0.1-fixpack_3.x
hcltech / domino 11.0.1-fixpack_4 11.0.1-fixpack_4.x
hcltech / domino 11.0.1-fixpack_5 11.0.1-fixpack_5.x
hcltech / domino 12.0 12.0.x