Ibm Domino vulnerabilities

27 known vulnerabilities affecting ibm/domino.

Total CVEs
27
CISA KEV
0
Public exploits
2
Exploited in wild
1
Severity breakdown
CRITICAL6HIGH11MEDIUM9LOW1

Vulnerabilities

Page 2 of 2
CVE-2015-1981LOWCVSS 2.1v8.5.0v8.5.1+3 more2015-06-28
CVE-2015-1981 [LOW] CWE-79 CVE-2015-1981: Cross-site scripting (XSS) vulnerability in the web server in IBM Domino 8.5.x before 8.5.3 FP6 IF8 Cross-site scripting (XSS) vulnerability in the web server in IBM Domino 8.5.x before 8.5.3 FP6 IF8 and 9.x before 9.0.1 FP4, when Webmail is enabled, allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, aka SPR KLYH9WYPR5.
nvd
CVE-2015-1903CRITICALCVSS 10.0v8.5.0v8.5.1+3 more2015-05-20
CVE-2015-1903 [CRITICAL] CWE-119 CVE-2015-1903: Stack-based buffer overflow in IBM Domino 8.5 before 8.5.3 FP6 IF7 and 9.0 before 9.0.1 FP3 IF3 allo Stack-based buffer overflow in IBM Domino 8.5 before 8.5.3 FP6 IF7 and 9.0 before 9.0.1 FP3 IF3 allows remote attackers to execute arbitrary code via a crafted BMP image, aka SPR KLYH9TSN3Y.
nvd
CVE-2015-1902CRITICALCVSS 10.0v8.5.0v8.5.1+3 more2015-05-20
CVE-2015-1902 [CRITICAL] CWE-119 CVE-2015-1902: Stack-based buffer overflow in IBM Domino 8.5 before 8.5.3 FP6 IF7 and 9.0 before 9.0.1 FP3 IF3 allo Stack-based buffer overflow in IBM Domino 8.5 before 8.5.3 FP6 IF7 and 9.0 before 9.0.1 FP3 IF3 allows remote attackers to execute arbitrary code via a crafted BMP image, aka SPR KLYH9TSMLA.
nvd
CVE-2015-0135CRITICALCVSS 10.0v8.5.0v8.5.1+2 more2015-04-21
CVE-2015-0135 [CRITICAL] CWE-189 CVE-2015-0135: IBM Domino 8.5 before 8.5.3 FP6 IF4 and 9.0 before 9.0.1 FP3 IF2 allows remote attackers to execute IBM Domino 8.5 before 8.5.3 FP6 IF4 and 9.0 before 9.0.1 FP3 IF2 allows remote attackers to execute arbitrary code or cause a denial of service (integer truncation and application crash) via a crafted GIF image, aka SPR KLYH9T7NT9.
nvd
CVE-2015-0117CRITICALCVSS 10.0v8.5.0v8.5.1+3 more2015-04-06
CVE-2015-0117 [CRITICAL] CVE-2015-0117: The LDAP Server in IBM Domino 8.5.x before 8.5.3 FP6 IF6 and 9.x before 9.0.1 FP3 IF1 allows remote The LDAP Server in IBM Domino 8.5.x before 8.5.3 FP6 IF6 and 9.x before 9.0.1 FP3 IF1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, aka SPR KLYH9SLRGM.
nvd
CVE-2015-0134CRITICALCVSS 10.0v8.5.0v8.5.1+3 more2015-04-06
CVE-2015-0134 [CRITICAL] CWE-119 CVE-2015-0134: Buffer overflow in the SSLv2 implementation in IBM Domino 8.5.x before 8.5.1 FP5 IF3, 8.5.2 before F Buffer overflow in the SSLv2 implementation in IBM Domino 8.5.x before 8.5.1 FP5 IF3, 8.5.2 before FP4 IF3, 8.5.3 before FP6 IF6, 9.0 before IF7, and 9.0.1 before FP2 IF3 allows remote attackers to execute arbitrary code via unspecified vectors.
nvd
CVE-2015-0179HIGHCVSS 7.2PoCv8.5.0v8.5.1+3 more2015-04-06
CVE-2015-0179 [HIGH] CWE-264 CVE-2015-0179: Notes System Diagnostic (NSD) in IBM Domino 8.5.x before 8.5.3 FP6 IF6 and 9.x before 9.0.1 FP3 IF1 Notes System Diagnostic (NSD) in IBM Domino 8.5.x before 8.5.3 FP6 IF6 and 9.x before 9.0.1 FP3 IF1 allows local users to obtain the System privilege via unspecified vectors, aka SPR TCHL9SST8V.
nvd
← Previous2 / 2