Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-42449

Unsafe default file type filter policy in HCL Domino Volt allows upload of .html file and execution of unsafe JavaScript in deployed applications

Published

2025-04-30T21:15:53.053

Last Modified

2025-10-30T20:40:07.330

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 4.6 (MEDIUM)

Weaknesses
  • Type: Secondary
    CWE-434
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application hcltech domino_leap < 1.1.1 Yes
References