Ibm

Lotus Domino

86 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2013-0486

  • EPSS 0.68%
  • Veröffentlicht 27.03.2013 12:23:46
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Memory leak in the HTTP server in IBM Domino 8.5.x allows remote attackers to cause a denial of service (memory consumption and daemon crash) via GET requests, aka SPR KLYH92NKZY.

8.5

CVE-2013-0487

  • EPSS 0.46%
  • Veröffentlicht 27.03.2013 12:23:46
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The Java Console in IBM Domino 8.5.x allows remote authenticated users to hijack temporary credentials by leveraging knowledge of configuration details, aka SPR KLYH8TNNDN.

6

CVE-2013-0489

  • EPSS 0.09%
  • Veröffentlicht 27.03.2013 12:23:46
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site request forgery (CSRF) vulnerability in webadmin.nsf (aka the Web Administrator client) in IBM Domino 8.5.x allows remote authenticated users to hijack the authentication of administrators.

4.3

CVE-2012-4844

  • EPSS 0.24%
  • Veröffentlicht 27.02.2013 21:55:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in the web server in IBM Lotus Domino 8.5.x through 8.5.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

5.8

CVE-2012-4842

  • EPSS 0.2%
  • Veröffentlicht 27.02.2013 21:55:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Open redirect vulnerability in the web server in IBM Lotus Domino 8.5.x through 8.5.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

9.3

CVE-2012-4823

  • EPSS 13.16%
  • Veröffentlicht 11.01.2013 00:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, T...

9.3

CVE-2012-4822

  • EPSS 10.24%
  • Veröffentlicht 11.01.2013 00:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rationa...

9.3

CVE-2012-4821

  • EPSS 5.99%
  • Veröffentlicht 11.01.2013 00:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rationa...

9.3

CVE-2012-4820

  • EPSS 9.37%
  • Veröffentlicht 11.01.2013 00:55:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, T...

4.3

CVE-2012-3302

  • EPSS 0.27%
  • Veröffentlicht 21.08.2012 10:46:10
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Domino 7.x and 8.x before 8.5.4 allow remote attackers to inject arbitrary web script or HTML via (1) a URL accessed during use of the Mail template in the WebMail UI or (2) a URL acces...