CVEDB API

Vulnerabilities

Vulnerable Software

Ibm: >> Lotus Domino >> 8.5.3.0 Security Vulnerabilities

CVE-2013-0590

Cross-site scripting (XSS) vulnerability in iNotes 8.5.x in IBM Lotus Domino 8.5 before 8.5.3 FP5 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, aka SPR PTHN95XNR3, a different vulnerability than CVE-2013-0591.

CVSS Score

3.5

EPSS Score

0.002

Published

2013-08-27

CVE-2013-0591

CVSS Score

3.5

EPSS Score

0.002

Published

2013-08-27

CVE-2013-3990

Cross-site scripting (XSS) vulnerability in the MIME e-mail functionality in iNotes in IBM Domino 9.0 before IF3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka SPR PTHN98FLQ2.

CVSS Score

4.3

EPSS Score

0.003

Published

2013-08-09

CVE-2013-3032

CVSS Score

4.3

EPSS Score

0.003

Published

2013-08-09

CVE-2013-0486

Memory leak in the HTTP server in IBM Domino 8.5.x allows remote attackers to cause a denial of service (memory consumption and daemon crash) via GET requests, aka SPR KLYH92NKZY.

CVSS Score

4.3

EPSS Score

0.007

Published

2013-03-27

CVE-2013-0487

The Java Console in IBM Domino 8.5.x allows remote authenticated users to hijack temporary credentials by leveraging knowledge of configuration details, aka SPR KLYH8TNNDN.

CVSS Score

8.5

EPSS Score

0.005

Published

2013-03-27

CVE-2013-0488

Cross-site scripting (XSS) vulnerability in webadmin.nsf (aka the Web Administrator client) in IBM Domino 8.5.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS Score

4.3

EPSS Score

0.002

Published

2013-03-27

CVE-2013-0489

Cross-site request forgery (CSRF) vulnerability in webadmin.nsf (aka the Web Administrator client) in IBM Domino 8.5.x allows remote authenticated users to hijack the authentication of administrators.

CVSS Score

6.0

EPSS Score

0.001

Published

2013-03-27

CVE-2012-4842

Open redirect vulnerability in the web server in IBM Lotus Domino 8.5.x through 8.5.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

CVSS Score

5.8

EPSS Score

0.002

Published

2013-02-27

CVE-2012-4844

Cross-site scripting (XSS) vulnerability in the web server in IBM Lotus Domino 8.5.x through 8.5.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS Score

4.3

EPSS Score

0.002

Published

2013-02-27

Prev Next

Page 2

Vulnerabilities

Vulnerable Software

Ibm: >> Lotus Domino >> 8.5.3.0 Security Vulnerabilities

Products

Pricing

Contact Us