Ibm

Lotus Domino

86 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2013-0486

  • EPSS 0.68%
  • Published 27.03.2013 12:23:46
  • Last modified 11.04.2025 00:51:21

Memory leak in the HTTP server in IBM Domino 8.5.x allows remote attackers to cause a denial of service (memory consumption and daemon crash) via GET requests, aka SPR KLYH92NKZY.

8.5

CVE-2013-0487

  • EPSS 0.46%
  • Published 27.03.2013 12:23:46
  • Last modified 11.04.2025 00:51:21

The Java Console in IBM Domino 8.5.x allows remote authenticated users to hijack temporary credentials by leveraging knowledge of configuration details, aka SPR KLYH8TNNDN.

6

CVE-2013-0489

  • EPSS 0.09%
  • Published 27.03.2013 12:23:46
  • Last modified 11.04.2025 00:51:21

Cross-site request forgery (CSRF) vulnerability in webadmin.nsf (aka the Web Administrator client) in IBM Domino 8.5.x allows remote authenticated users to hijack the authentication of administrators.

4.3

CVE-2012-4844

  • EPSS 0.24%
  • Published 27.02.2013 21:55:03
  • Last modified 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in the web server in IBM Lotus Domino 8.5.x through 8.5.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

5.8

CVE-2012-4842

  • EPSS 0.2%
  • Published 27.02.2013 21:55:03
  • Last modified 11.04.2025 00:51:21

Open redirect vulnerability in the web server in IBM Lotus Domino 8.5.x through 8.5.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

9.3

CVE-2012-4823

  • EPSS 13.16%
  • Published 11.01.2013 00:55:01
  • Last modified 11.04.2025 00:51:21

Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, T...

9.3

CVE-2012-4822

  • EPSS 10.24%
  • Published 11.01.2013 00:55:01
  • Last modified 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rationa...

9.3

CVE-2012-4821

  • EPSS 5.99%
  • Published 11.01.2013 00:55:01
  • Last modified 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rationa...

9.3

CVE-2012-4820

  • EPSS 9.37%
  • Published 11.01.2013 00:55:00
  • Last modified 11.04.2025 00:51:21

Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, T...

4.3

CVE-2012-3302

  • EPSS 0.27%
  • Published 21.08.2012 10:46:10
  • Last modified 11.04.2025 00:51:21

Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Domino 7.x and 8.x before 8.5.4 allow remote attackers to inject arbitrary web script or HTML via (1) a URL accessed during use of the Mail template in the WebMail UI or (2) a URL acces...