CNNVD-202511-2754 Information

CNNVD ID

CNNVD-202511-2754

Related CVE

CVE-2025-0248

• CNNVD Published: 2025-11-25

Description (Chinese)

HCL Hcl Inotes是印度HCL公司的一个可以对 IBMDomino 邮件进行管理、代办事项进行调度等办公活动管理的软件。 Hcl Inotes存在安全漏洞，该漏洞源于用户输入验证不当，可能导致反射型跨站脚本攻击。

Description (English)

HCL Hcl Inotes is a software for HCL India that allows for the management of IBMDomino mail, as well as for the management of office activities, such as the dispatch of e-mails. Hcl Inotes had a security loophole, which stemmed from inappropriate user input verification, which could lead to a reflective cross-site script attack.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

HCL

Published

2025-11-25

Last Modified

2026-02-24

References

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0127032 https://vigilance.fr/vulnerability/HCL-Domino-iNotes-Cross-Site-Scripting-dated-25-11-2025-48863

Patch

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0127032