CVE-2020-4092

"If port encryption is not enabled on the Domino Server, HCL Nomad on Android and iOS Platforms will communicate in clear text and does not currently have a user interface option to change the setting to request an encrypted communication channel with the Domino server. This can potentially expose sensitive information including but not limited to server names, user IDs and document content."
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:hcltech:hcl_nomad:1.0:*:*:*:*:android:*:*
cpe:2.3:a:hcltech:hcl_nomad:1.0:*:*:*:*:iphone_os:*:*
cpe:2.3:a:hcltech:hcl_nomad:1.0.1:*:*:*:*:android:*:*
cpe:2.3:a:hcltech:hcl_nomad:1.0.1:*:*:*:*:iphone_os:*:*
cpe:2.3:a:hcltech:hcl_nomad:1.0.2:*:*:*:*:android:*:*
cpe:2.3:a:hcltech:hcl_nomad:1.0.2:*:*:*:*:iphone_os:*:*
cpe:2.3:a:hcltech:hcl_nomad:1.0.3:*:*:*:*:android:*:*
cpe:2.3:a:hcltech:hcl_nomad:1.0.3:*:*:*:*:iphone_os:*:*
cpe:2.3:a:hcltech:hcl_nomad:1.0.4:*:*:*:*:android:*:*
cpe:2.3:a:hcltech:hcl_nomad:1.0.4:*:*:*:*:iphone_os:*:*
cpe:2.3:a:hcltech:hcl_nomad:1.0.5:*:*:*:*:android:*:*
cpe:2.3:a:hcltech:hcl_nomad:1.0.5:*:*:*:*:iphone_os:*:*
cpe:2.3:a:hcltech:hcl_nomad:1.0.6:*:*:*:*:iphone_os:*:*
cpe:2.3:a:hcltech:hcl_nomad:1.0.7:*:*:*:*:iphone_os:*:*
cpe:2.3:a:hcltech:hcl_nomad:1.0.8:*:*:*:*:iphone_os:*:*

History

21 Nov 2024, 05:32

Type Values Removed Values Added
References () https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0078969 - Vendor Advisory () https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0078969 - Vendor Advisory

Information

Published : 2020-05-06 13:15

Updated : 2024-11-21 05:32


NVD link : CVE-2020-4092

Mitre link : CVE-2020-4092

CVE.ORG link : CVE-2020-4092


JSON object : View

Products Affected

hcltech

  • hcl_nomad
CWE
CWE-319

Cleartext Transmission of Sensitive Information