What is the severity of CVE-2020-14232?

CVE-2020-14232 has a medium severity rating as it can be exploited by an authenticated attacker to cause a stack buffer overflow.

How do I fix CVE-2020-14232?

To fix CVE-2020-14232, upgrade HCL Notes to the latest version that addresses this vulnerability.

What are the potential impacts of CVE-2020-14232?

The potential impacts of CVE-2020-14232 include program crashes and the possibility of code execution with the privileges of the currently authenticated user.

Which versions of HCL Notes are affected by CVE-2020-14232?

CVE-2020-14232 affects HCL Notes versions 9.0 and 9.0.1, including various fix packs.

Is CVE-2020-14232 exploitable remotely?

CVE-2020-14232 is not exploitable remotely as it requires authenticated access to the HCL Notes application.

Vulnerability/
CVE-2020-14232

critical

CWE

119

17/12/2020

4/8/2024

CVE-2020-14232: Buffer Overflow

First published: Thu Dec 17 2020(Updated: )

A vulnerability in the input parameter handling of HCL Notes v9 could potentially be exploited by an authenticated attacker resulting in a stack buffer overflow. This could allow the attacker to crash the program or inject code into the system which would execute with the privileges of the currently logged in user.

Credit: psirt@hcl.com

Affected Software	Affected Version	How to fix
HCL Notes	=9.0
HCL Notes	=9.0.1
HCL Notes	=9.0.1-fp10
HCL Notes	=9.0.1-fp10if1
HCL Notes	=9.0.1-fp10if2
HCL Notes	=9.0.1-fp10if3
HCL Notes	=9.0.1-fp10if4
HCL Notes	=9.0.1-fp10if5
HCL Notes	=9.0.1-fp10if6
HCL Notes	=9.0.1-fp10if7

Never miss a vulnerability like this again

Reference Links

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0085883

Frequently Asked Questions

What is the severity of CVE-2020-14232?
CVE-2020-14232 has a medium severity rating as it can be exploited by an authenticated attacker to cause a stack buffer overflow.
How do I fix CVE-2020-14232?
To fix CVE-2020-14232, upgrade HCL Notes to the latest version that addresses this vulnerability.
What are the potential impacts of CVE-2020-14232?
The potential impacts of CVE-2020-14232 include program crashes and the possibility of code execution with the privileges of the currently authenticated user.
Which versions of HCL Notes are affected by CVE-2020-14232?
CVE-2020-14232 affects HCL Notes versions 9.0 and 9.0.1, including various fix packs.
Is CVE-2020-14232 exploitable remotely?
CVE-2020-14232 is not exploitable remotely as it requires authenticated access to the HCL Notes application.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/last-modified-date
agent/references
agent/weakness
agent/author
agent/event
agent/description
agent/first-publish-date
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/hcltech
canonical/hcl notes
version/hcl notes/9.0
version/hcl notes/9.0.1
version/hcl notes/9.0.1-fp10
version/hcl notes/9.0.1-fp10if1
version/hcl notes/9.0.1-fp10if2
version/hcl notes/9.0.1-fp10if3
version/hcl notes/9.0.1-fp10if4
version/hcl notes/9.0.1-fp10if5
version/hcl notes/9.0.1-fp10if6
version/hcl notes/9.0.1-fp10if7

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.