{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-06T13:19:53.874","vulnerabilities":[{"cve":{"id":"CVE-2020-4102","sourceIdentifier":"psirt@hcl.com","published":"2020-12-02T01:15:12.903","lastModified":"2024-11-21T05:32:17.443","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"HCL Notes is susceptible to a Buffer Overflow vulnerability in DXL due to improper validation of user input. A successful exploit could enable an attacker to crash Notes or execute attacker-controlled code on the client system."},{"lang":"es","value":"HCL Notes es susceptible a una vulnerabilidad de Desbordamiento de Búfer en DXL debido a una comprobación inapropiada de la entrada de usuario. Una explotación con éxito podría permitir a un atacante bloquear Notes o ejecutar código controlado por el atacante en el sistema cliente"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":6.7,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":0.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:C/I:C/A:C","baseScore":7.2,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":3.9,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-120"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:hcltech:notes:*:*:*:*:*:*:*:*","versionStartIncluding":"9.0.0","versionEndIncluding":"9.0.1","matchCriteriaId":"071126BF-BD0E-4134-B5D2-81DC9A37CD9A"},{"vulnerable":true,"criteria":"cpe:2.3:a:hcltech:notes:10.0:*:*:*:*:*:*:*","matchCriteriaId":"B3C46D23-F52D-46D7-973B-FEF916ECD181"},{"vulnerable":true,"criteria":"cpe:2.3:a:hcltech:notes:10.0.1:-:*:*:*:*:*:*","matchCriteriaId":"847B0ACB-6B84-4D45-B30F-A930A226E14D"},{"vulnerable":true,"criteria":"cpe:2.3:a:hcltech:notes:10.0.1:fp1:*:*:*:*:*:*","matchCriteriaId":"E36EE406-5355-422B-B1AE-6349DCDBF872"},{"vulnerable":true,"criteria":"cpe:2.3:a:hcltech:notes:10.0.1:fp2:*:*:*:*:*:*","matchCriteriaId":"CFA1279C-D6E4-47D4-9D40-F39EC9C31E12"},{"vulnerable":true,"criteria":"cpe:2.3:a:hcltech:notes:10.0.1:fp3:*:*:*:*:*:*","matchCriteriaId":"4F0771C5-5F44-4563-BEFF-0DCEABE5452A"},{"vulnerable":true,"criteria":"cpe:2.3:a:hcltech:notes:10.0.1:fp4:*:*:*:*:*:*","matchCriteriaId":"980BB9E6-810B-4288-8667-0291BFFDCB9D"},{"vulnerable":true,"criteria":"cpe:2.3:a:hcltech:notes:10.0.1:fp5:*:*:*:*:*:*","matchCriteriaId":"8BECE3D7-F8C4-4065-8CCC-E9CF70CD6943"},{"vulnerable":true,"criteria":"cpe:2.3:a:hcltech:notes:11.0:*:*:*:*:*:*:*","matchCriteriaId":"06AD0ACF-704C-4BBE-9059-1A1E9008D7A4"},{"vulnerable":true,"criteria":"cpe:2.3:a:hcltech:notes:11.0.1:*:*:*:*:*:*:*","matchCriteriaId":"FBE658FD-FD4C-4BB8-9AD7-6AB40AB1BDC2"}]}]}],"references":[{"url":"https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085499","source":"psirt@hcl.com","tags":["Vendor Advisory"]},{"url":"https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085499","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}