Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm sametime 8.5.2.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-6727
The Connect client in IBM Sametime 8.5.2 up to and including 8.5.2.1 and 9.0 before HF1 does not properly restrict unsigned Java plugins, which allows remote malicious users to obtain sensitive information via unspecified vectors.
Ibm Sametime 8.5.2.0
Ibm Sametime 8.5.2.1
Ibm Sametime 9.0.0.0
NA
CVE-2013-3978
The Meeting Server in IBM Sametime 8.5.2 up to and including 8.5.2.1 and 9.x up to and including 9.0.0.1 does not send the appropriate HTTP response headers to prevent unwanted caching by a web browser, which allows remote malicious users to obtain sensitive information by levera...
Ibm Sametime 8.5.2.0
Ibm Sametime 9.0.0.1
Ibm Sametime 8.5.2.1
Ibm Sametime 9.0.0.0
NA
CVE-2013-3983
The Meeting Server in IBM Sametime 8.5.2 up to and including 8.5.2.1 and 9.x up to and including 9.0.0.1 does not validate URLs in Cookie headers before using them in redirects, which has unspecified impact and remote attack vectors.
Ibm Sametime 9.0.0.0
Ibm Sametime 9.0.0.1
Ibm Sametime 8.5.2.0
Ibm Sametime 8.5.2.1
NA
CVE-2013-3988
The Meeting Server in IBM Sametime 8.5.2 up to and including 8.5.2.1 and 9.x up to and including 9.0.0.1 allows remote malicious users to conduct clickjacking attacks via unspecified vectors.
Ibm Sametime 8.5.2.1
Ibm Sametime 9.0.0.0
Ibm Sametime 9.0.0.1
Ibm Sametime 8.5.2.0
NA
CVE-2013-6742
The Meeting Server in IBM Sametime 8.5.2 up to and including 8.5.2.1 and 9.x up to and including 9.0.0.1 do not have an off autocomplete attribute for a password field, which makes it easier for remote malicious users to obtain access by leveraging an unattended workstation.
Ibm Sametime 8.5.2.1
Ibm Sametime 9.0.0.0
Ibm Sametime 9.0.0.1
Ibm Sametime 8.5.2.0
NA
CVE-2013-6743
Cross-site scripting (XSS) vulnerability in the Meeting Server in IBM Sametime 8.5.2 up to and including 8.5.2.1 and 9.x up to and including 9.0.0.1 allows remote authenticated users to inject arbitrary web script or HTML via vectors involving an IMG element.
Ibm Sametime 9.0.0.0
Ibm Sametime 9.0.0.1
Ibm Sametime 8.5.2.0
Ibm Sametime 8.5.2.1
4.3
CVSSv3
CVE-2016-10503
IBM Sametime Meeting Server 8.5.2 and 9.0 could allow an authenticated and invited user of Sametime meeting to lower any or all hands in an e-meeting, thus spoofing results of votes in the meeting. IBM X-Force ID: 113803.
Ibm Sametime 9.0.0.0
Ibm Sametime 9.0.1
Ibm Sametime 8.5.2.1
Ibm Sametime 9.0.0.1
Ibm Sametime 8.5.2.0
5.3
CVSSv3
CVE-2016-2971
IBM Sametime Media Services 8.5.2 and 9.0 can disclose sensitive information in stack trace error logs that could aid an attacker in future attacks. IBM X-Force ID: 113898.
Ibm Sametime 9.0.0.1
Ibm Sametime 9.0.1
Ibm Sametime 8.5.2.0
Ibm Sametime 8.5.2.1
Ibm Sametime 9.0.0.0
7.8
CVSSv3
CVE-2016-2972
IBM Sametime Meeting Server 8.5.2 and 9.0 could store credentials of the Sametime Meetings user in the local cache of their browser which could be accessed by a local user. IBM X-Force ID: 113855.
Ibm Sametime 9.0.0.1
Ibm Sametime 9.0.1
Ibm Sametime 9.0.0.0
Ibm Sametime 8.5.2.0
Ibm Sametime 8.5.2.1
3.3
CVSSv3
CVE-2016-2974
IBM Sametime Connect 8.5.2 and 9.0, after uninstalling the Sametime Rich Client, could disclose potentially sensitive information related to the Sametime environment as well as other users on the local machine of the user. IBM X-Force ID: 113934.
Ibm Sametime 9.0.0.0
Ibm Sametime 9.0.0.1
Ibm Sametime 9.0.1
Ibm Sametime 8.5.2.0
Ibm Sametime 8.5.2.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firewall
CVE-2024-35649
stored XSS
CVE-2022-28654
CVE-2020-35153
CVE-2024-27348
CVE-2022-28652
local users
CVE-2017-3506
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »