Security Advisory

CVE-2023-28015

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-23 21:25:09

Last updated 2025-01-17 15:22:07

Assigner HCL

State PUBLISHED

Description

The HCL Domino AppDev Pack IAM service is susceptible to a User Account Enumeration vulnerability. During a failed login attempt a difference in messages could allow an attacker to determine if the user is valid or not. The attacker could use this information to focus a brute force attack on valid users.

← Browse all CVEs View on cve.org ↗