CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
CVE-2024-30146: HCL Domino Leap is affected by improper access control
4.1
CVSS
Description
Improper access control of endpoint in HCL Domino Leap
allows certain admin users to import applications from the
server's filesystem.
Classification
CVE ID: CVE-2024-30146
CVSS Base Severity: MEDIUM
CVSS Base Score: 4.1
CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L
Problem Types
CWE-284 Improper access controlAffected Products
Vendor: HCL Software
Product: HCL Domino Leap
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.04% (probability of being exploited)
EPSS Percentile: 12.01% (scored less or equal to compared to others)
EPSS Date: 2025-05-29 (when was this score calculated)
References
https://nvd.nist.gov/vuln/detail/CVE-2024-30146https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0120722