Lucene search

K
cve[email protected]CVE-2013-3044
HistoryNov 09, 2013 - 1:55 a.m.

CVE-2013-3044

2013-11-0901:55:04
CWE-264
web.nvd.nist.gov
18
ibm
lotus sametime
cve-2013-3044
spoofing
chat messages
security vulnerability
nvd

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

6.2 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

34.4%

The Enterprise Meeting Server in IBM Lotus Sametime 8.5.2 and 8.5.2.1 allows remote authenticated users to spoof the origin of chat messages, or compose anonymous chat messages, by leveraging meeting-attendance privileges.

Affected configurations

NVD
Node
ibmlotus_sametimeMatch8.5.2
OR
ibmlotus_sametimeMatch8.5.2.1

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

6.2 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

34.4%

Related for CVE-2013-3044