Nomad Server On Domino
CVE-2024-30128
MEDIUM
Severity by source
AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Lifecycle Timeline
1DescriptionNVD
HCL Nomad server on Domino is affected by an open proxy vulnerability in which an unauthenticated attacker can mask their original source IP address. This may enable an attacker to trick the user into exposing sensitive information.
AnalysisAI
HCL Nomad server on Domino is affected by an open proxy vulnerability in which an unauthenticated attacker can mask their original source IP address. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Technical ContextAI
This vulnerability is classified under CWE-441. HCL Nomad server on Domino is affected by an open proxy vulnerability in which an unauthenticated attacker can mask their original source IP address. This may enable an attacker to trick the user into exposing sensitive information. Affected products include: Hcltech Nomad Server On Domino.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
More in Nomad Server On Domino
View allHCL Nomad server on Domino did not configure certain HTTP Security headers by default which could allow an attacker to o
HCL Nomad server on Domino is vulnerable to the cache containing sensitive information which could potentially give an a
HCL Nomad server on Domino fails to properly handle users configured with limited Domino access resulting in a possible
Same technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today