← Back

CVE-2020-4097

nvd nist
Published: Nov 5, 2020Modified: Jun 17, 2026

JSON object

Loading...
6.8
Vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 0.9 / Impact: 5.9
Source: NVD

Description

In HCL Notes version 9 previous to release 9.0.1 FixPack 10 Interim Fix 8, version 10 previous to release 10.0.1 FixPack 6 and version 11 previous to 11.0.1 FixPack 1, a vulnerability in the input parameter handling of the Notes Client could potentially be exploited by an attacker resulting in a buffer overflow. This could enable an attacker to crash HCL Notes or execute attacker-controlled code on the client.

Affected (40)

Products: Hcltech: Notes
Hcltech
1 product
Notes
Configuration A
40 vulnerable
Vulnerable SoftwareAffected Versions
Hcltech
Notes
From 11.0 to 11.0.1
Notes
From 9.0 to 9.0.1
Notes
Version 10.0.0 fp1
Notes
Version 10.0.0 fp2
Notes
Version 10.0.0 fp3
Notes
Version 10.0.0 fp4
Notes
Version 10.0.0 fp5
Notes
Version 10.0.1 fp1
Notes
Version 10.0.1 fp2
Notes
Version 10.0.1 fp3
Notes
Version 10.0.1 fp4
Notes
Version 10.0.1 fp5
Notes
Version 9.0.1 fp10
Notes
Version 9.0.1 fp10if1
Notes
Version 9.0.1 fp10if2
Notes
Version 9.0.1 fp10if3
Notes
Version 9.0.1 fp10if4
Notes
Version 9.0.1 fp10if5
Notes
Version 9.0.1 fp10if6
Notes
Version 9.0.1 fp10if7
Notes
Version 9.0.1 fp1if1
Notes
Version 9.0.1 fp1if2
Notes
Version 9.0.1 fp2if1
Notes
Version 9.0.1 fp2if2
Notes
Version 9.0.1 fp2if3
Notes
Version 9.0.1 fp2if4
Notes
Version 9.0.1 fp3if1
Notes
Version 9.0.1 fp3if2
Notes
Version 9.0.1 fp3if3
Notes
Version 9.0.1 fp3if4
Notes
Version 9.0.1 fp4if1
Notes
Version 9.0.1 fp4if2
Notes
Version 9.0.1 fp5if1
Notes
Version 9.0.1 fp5if2
Notes
Version 9.0.1 fp5if3
Notes
Version 9.0.1 fp7if1
Notes
Version 9.0.1 fp7if2
Notes
Version 9.0.1 fp8if1
Notes
Version 9.0.1 fp9if1
Notes
Version 9.0.1 fp9if2

Related CWEs

CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References (2)

Source: psirt@hcl.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.