Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
HCL Domino is susceptible to a weak cryptography vulnerability
Vulnerability Description
Internet passwords stored in Person documents in the Domino® Directory created using the "Add Person" action on the People & Groups tab in the Domino® Administrator are secured using a cryptographically weak hash algorithm. This could enable attackers with access to the hashed value to determine a user's password, e.g. using a brute force attack. This issue does not impact Person documents created through user registration https://help.hcltechsw.com/domino/10.0.1/admin/conf_userregistration_c.html .
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
N/A
Vulnerability Title
HCL Domino 安全漏洞
Vulnerability Description
HCL Technologies HCL Domino是美国HCL Technologies公司的一个应用软件。提供一个应用开发平台。 HCL Domino存在安全漏洞,该漏洞源于使用弱哈希加密算法,攻击者可以使用暴力攻击访问哈希值来确定用户的密码。
CVSS Information
N/A
Vulnerability Type
N/A