{"vulnerability": "CVE-2020-1427", "sightings": [{"uuid": "275714c7-bdcc-4a18-aba0-387d3db4b6d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-14273", "type": "seen", "source": "https://t.me/cibsecurity/21360", "content": "\u203c CVE-2020-14273 \u203c\n\nHCL Domino v10 and v11 is susceptible to a Denial of Service (DoS) vulnerability due to insufficient validation of input to its public API. An unauthenticated attacker could could exploit this vulnerability to crash the Domino server.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-28T22:28:47.000000Z"}, {"uuid": "046d2e85-8617-4985-8094-dd6ff078c528", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-14270", "type": "seen", "source": "https://t.me/cibsecurity/21202", "content": "\u203c CVE-2020-14270 \u203c\n\nHCL Domino v9, v10, v11 is susceptible to an Information Disclosure vulnerability in XPages due to improper error handling of user input. An unauthenticated attacker could exploit this vulnerability to obtain information about the XPages software running on the Domino server.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-23T00:54:06.000000Z"}, {"uuid": "a5352715-b7de-4590-9e66-17c94721f63b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-14271", "type": "seen", "source": "https://t.me/cibsecurity/21102", "content": "\u203c CVE-2020-14271 \u203c\n\nHCL iNotes v9, v10 and v11 is susceptible to a Stored Cross-Site Scripting (XSS) vulnerability due to improper handling of message content. An unauthenticated remote attacker could exploit this vulnerability using specially-crafted markup to execute script in a victim's web browser within the security context of the hosting Web site and/or steal the victim's cookie-based authentication credentials.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-19T02:44:18.000000Z"}]}