Sametime Security Vulnerabilities and Issues — Sametime CVE List

Lucene search

IbmSametime

5 matches found

CVE•added 2017/08/29 9:29 p.m.•40 views

CVE-2016-2974

IBM Sametime Connect 8.5.2 and 9.0, after uninstalling the Sametime Rich Client, could disclose potentially sensitive information related to the Sametime environment as well as other users on the local machine of the user. IBM X-Force ID: 113934.

3.3CVSS3.6AI score0.00063EPSS

CVE•added 2013/04/28 3:24 a.m.•37 views

CVE-2013-0553

The client implementation in IBM Sametime 8.5.1 through 8.5.2.1, as used in Sametime Connect client, Sametime Advanced Connect client, Sametime Advanced Web client, and other products, allows remote authenticated users to send commands to individual chat users, or to all participants in a chat room...

3.5CVSS6.4AI score0.00141EPSS

CVE•added 2014/02/14 1:10 p.m.•37 views

CVE-2013-6743

Cross-site scripting (XSS) vulnerability in the Meeting Server in IBM Sametime 8.5.2 through 8.5.2.1 and 9.x through 9.0.0.1 allows remote authenticated users to inject arbitrary web script or HTML via vectors involving an IMG element.

3.5CVSS5.2AI score0.00188EPSS

CVE•added 2017/08/29 9:29 p.m.•36 views

CVE-2016-2978

IBM Sametime 8.5.2 and 9.0 could store potentially sensitive information from the browser cache locally that could be available to a local user. IBM X-Force ID: 113938.

3.3CVSS3.5AI score0.00054EPSS

CVE•added 2014/05/26 4:29 a.m.•33 views

CVE-2014-3014

Cross-site scripting (XSS) vulnerability in the Meeting Server in IBM Sametime 8.x through 8.5.2.1 and 9.x through 9.0.0.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.

3.5CVSS5.2AI score0.00188EPSS