Lotus Sametime@8.0.1 Security Vulnerabilities and Issues — Lotus Sametime@8.0.1 CVE List

Lucene search

IbmLotus Sametime8.0.1

5 matches found

CVE•added 2011/03/01 11:0 p.m.•43 views

CVE-2011-1106

Cross-site scripting (XSS) vulnerability in stcenter.nsf in the server in IBM Lotus Sametime allows remote attackers to inject arbitrary web script or HTML via the authReasonCode parameter in an OpenDatabase action.

4.3CVSS5.7AI score0.00779EPSS

CVE•added 2011/02/22 7:0 p.m.•37 views

CVE-2011-1038

Multiple cross-site scripting (XSS) vulnerabilities in stconf.nsf in the server in IBM Lotus Sametime 8.0.1 allow remote attackers to inject arbitrary web script or HTML via (1) the messageString parameter in a WebMessage action or (2) the PATH_INFO.

4.3CVSS5.6AI score0.03015EPSS

CVE•added 2013/05/02 6:55 p.m.•34 views

CVE-2013-0535

Multiple cross-site scripting (XSS) vulnerabilities in the Classic Meeting Server in IBM Sametime 7.5.1.2 through 8.5.2.1 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

3.5CVSS5.3AI score0.00161EPSS

CVE•added 2011/10/29 10:55 a.m.•33 views

CVE-2011-1370

The default configuration of the Sametime configuration servlet (SCS) in the server in IBM Lotus Sametime 7.0 through 8.5.2 does not enable an authentication requirement, which allows remote attackers to read the configuration settings by examining a response message.

5CVSS6.7AI score0.00254EPSS

CVE•added 2010/09/15 8:0 p.m.•32 views

CVE-2010-3398

Unspecified vulnerability in the webcontainer implementation in IBM Lotus Sametime Connect 8.5.1 before CF1 has unknown impact and attack vectors, aka SPRs LXUU87S57H and LXUU87S93W.

10CVSS6.6AI score0.00506EPSS