HIGH🇵🇱 Wersja polska

CVE-2024-30128

CVSS 8.6v3.1pub. 2024-09-25upd. 2025-10-30

HCL Nomad server on Domino is affected by an open proxy vulnerability in which an unauthenticated attacker can mask their original source IP address. This may enable an attacker to trick the user into exposing sensitive information.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
  • Hcltech Nomad Server On Domino

    APP
    Hcltech
    < 1.0.13
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2024-23588MEDIUM5.3ten sam produkt

HCL Nomad server on Domino fails to properly handle users configured with limited Domino access resulting in a...

CVE-2024-30132LOW3.7ten sam produkt

HCL Nomad server on Domino did not configure certain HTTP Security headers by default which could allow an att...

CVE-2024-30130LOW3.7ten sam produkt

HCL Nomad server on Domino is vulnerable to the cache containing sensitive information which could potentially...

CVE-2025-62319CRITICAL9.8PL ✓ten sam vendor

Boolean-Based SQL Injection umożliwiający wstrzyknięcie dowolnego SQL

CVE-2023-37502CRITICAL9.0ten sam vendor

HCL Compass is vulnerable to lack of file upload security.  An attacker could upload files containing active c...