1. CVE-Search
  2. CVE-2020-4129
ID CVE-2020-4129
Summary HCL Domino is susceptible to a lockout policy bypass vulnerability in the LDAP service. An unauthenticated attacker could use this vulnerability to mount a brute force attack against the LDAP service. Fixes are available in HCL Domino versions 9.0.1 FP10 IF6, 10.0.1 FP6 and 11.0.1 FP1 and later.
References
Vulnerable Configurations
  • cpe:2.3:a:hcltech:hcl_domino:*:*:*:*:*:*:*:*
    cpe:2.3:a:hcltech:hcl_domino:*:*:*:*:*:*:*:*
  • cpe:2.3:a:hcltech:hcl_domino:9.0.1:feature_pack_10_interim_fix_2:*:*:*:*:*:*
    cpe:2.3:a:hcltech:hcl_domino:9.0.1:feature_pack_10_interim_fix_2:*:*:*:*:*:*
  • cpe:2.3:a:hcltech:hcl_domino:9.0.1:feature_pack_10_interim_fix_3:*:*:*:*:*:*
    cpe:2.3:a:hcltech:hcl_domino:9.0.1:feature_pack_10_interim_fix_3:*:*:*:*:*:*
  • cpe:2.3:a:hcltech:hcl_domino:9.0.1:feature_pack_10_interim_fix_4:*:*:*:*:*:*
    cpe:2.3:a:hcltech:hcl_domino:9.0.1:feature_pack_10_interim_fix_4:*:*:*:*:*:*
  • cpe:2.3:a:hcltech:hcl_domino:9.0.1:feature_pack_10_interim_fix_5:*:*:*:*:*:*
    cpe:2.3:a:hcltech:hcl_domino:9.0.1:feature_pack_10_interim_fix_5:*:*:*:*:*:*
  • cpe:2.3:a:hcltech:hcl_domino:10.0.1:fixpack1:*:*:*:*:*:*
    cpe:2.3:a:hcltech:hcl_domino:10.0.1:fixpack1:*:*:*:*:*:*
  • cpe:2.3:a:hcltech:hcl_domino:10.0.1:fixpack2:*:*:*:*:*:*
    cpe:2.3:a:hcltech:hcl_domino:10.0.1:fixpack2:*:*:*:*:*:*
  • cpe:2.3:a:hcltech:hcl_domino:10.0.1:fixpack3:*:*:*:*:*:*
    cpe:2.3:a:hcltech:hcl_domino:10.0.1:fixpack3:*:*:*:*:*:*
  • cpe:2.3:a:hcltech:hcl_domino:10.0.1:fixpack4:*:*:*:*:*:*
    cpe:2.3:a:hcltech:hcl_domino:10.0.1:fixpack4:*:*:*:*:*:*
  • cpe:2.3:a:hcltech:hcl_domino:10.0.1:fixpack5:*:*:*:*:*:*
    cpe:2.3:a:hcltech:hcl_domino:10.0.1:fixpack5:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 02-12-2020 - 16:35)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:N/A:N
refmap via4
misc https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085407
Last major update 02-12-2020 - 16:35
Published 01-12-2020 - 00:15
Last modified 02-12-2020 - 16:35
Back to Top