Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sametime vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-0906
The Meeting Server in IBM Sametime 8.x up to and including 8.5.2.1 and 9.x up to and including 9.0.0.1 does not check whether a session cookie is current, which allows remote malicious users to conduct user-search actions by leveraging possession of a (1) expired or (2) invalidat...
Ibm Sametime 9.0.0.0
Ibm Sametime 8.5.2.1
Ibm Sametime 8.0.1.1
Ibm Sametime 8.0.1.0
Ibm Sametime 8.5.1.1
Ibm Sametime 8.5.2.0
Ibm Sametime 8.0.0.0
Ibm Sametime 8.0.2.1
Ibm Sametime 8.0.2.0
Ibm Sametime 8.5.1.0
Ibm Sametime 8.5.0.0
NA
CVE-2013-6733
Cross-site scripting (XSS) vulnerability in the Web Application in the Classic Meeting Server in IBM Sametime 7.5.1.2 up to and including 8.5.2.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Ibm Sametime 8.5.0.0
Ibm Sametime 8.5.1.0
Ibm Sametime 8.0.2.0
Ibm Sametime 8.0.2.1
Ibm Sametime 7.5.1.2
Ibm Sametime 8.0.0.0
Ibm Sametime 8.5.1.1
Ibm Sametime 8.5.2.0
Ibm Sametime 8.0.1.0
Ibm Sametime 8.0.1.1
Ibm Sametime 8.5.2.1
NA
CVE-2014-4747
The Classic Meeting Server in IBM Sametime 8.x up to and including 8.5.2.1 allows physically proximate malicious users to discover a meeting password hash by leveraging access to an unattended workstation to read HTML source code within a victim's browser.
Ibm Sametime 8.0.1.0
Ibm Sametime 8.0.1.1
Ibm Sametime 8.5.2.1
Ibm Sametime 8.0.2.0
Ibm Sametime 8.0.2.1
Ibm Sametime 8.5.0.0
Ibm Sametime 8.5.1.0
Ibm Sametime 8.0.0.0
Ibm Sametime 8.5.1.1
Ibm Sametime 8.5.2.0
NA
CVE-2014-4748
Cross-site scripting (XSS) vulnerability in the Classic Meeting Server in IBM Sametime 8.x up to and including 8.5.2.1 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL.
Ibm Sametime 8.5.1.0
Ibm Sametime 8.5.1.1
Ibm Sametime 8.0.0.0
Ibm Sametime 8.0.1.0
Ibm Sametime 8.5.2.0
Ibm Sametime 8.5.2.1
Ibm Sametime 8.0.1.1
Ibm Sametime 8.0.2.0
Ibm Sametime 8.0.2.1
Ibm Sametime 8.5.0.0
NA
CVE-2014-0890
The Connect client in IBM Sametime 8.5.1, 8.5.1.1, 8.5.1.2, 8.5.2, 8.5.2.1, 9.0, and 9.0.0.1, when a certain com.ibm.collaboration.realtime.telephony.*.level setting is used, logs cleartext passwords during Audio/Video chat sessions, which allows local users to obtain sensitive i...
Ibm Sametime 8.5.1.1
Ibm Sametime 8.5.1.0
Ibm Sametime 9.0.0.1
Ibm Sametime 8.5.1.2
Ibm Sametime 8.5.2.1
Ibm Sametime 8.5.2.0
Ibm Sametime 9.0.0.0
NA
CVE-2012-3308
Cross-site scripting (XSS) vulnerability in IBM Sametime 8.0.2 up to and including 8.5.2.1 allows remote malicious users to inject arbitrary web script or HTML via an IM chat.
Ibm Sametime 8.0.2.0
Ibm Sametime 8.0.2.1
Ibm Sametime 8.5.2.1
Ibm Sametime 8.5.1.1
Ibm Sametime 8.5.2.0
Ibm Sametime 8.5.0.0
Ibm Sametime 8.5.1.0
4.3
CVSSv3
CVE-2016-2966
IBM Sametime 8.5.1 and 9.0 could allow an authenticated user to enumerate meeting rooms by guessing the meeting room id. IBM X-Force ID: 113847.
Ibm Sametime 8.5.1.0
Ibm Sametime 9.0.0.1
Ibm Sametime 9.0.1
Ibm Sametime 8.5.2.0
Ibm Sametime 8.5.2.1
Ibm Sametime 8.5.1.1
Ibm Sametime 9.0.0.0
NA
CVE-2013-0534
The Connect client in IBM Sametime 8.5.1, 8.5.1.1, 8.5.1.2, 8.5.2, and 8.5.2.1, as used in the Lotus Notes client and separately, might allow local users to obtain sensitive information by leveraging the persistence of cleartext password strings within process memory.
Ibm Sametime 8.5.1.1
Ibm Sametime 8.5.1
Ibm Lotus Sametime 8.5.2.1
Ibm Lotus Sametime 8.5.1.2
Ibm Lotus Sametime 8.5.1.1
Ibm Lotus Sametime 8.5.2
Ibm Sametime 8.5.2.1
Ibm Lotus Sametime 8.5.1
Ibm Sametime 8.5.1.2
Ibm Sametime 8.5.2
NA
CVE-2011-1370
The default configuration of the Sametime configuration servlet (SCS) in the server in IBM Lotus Sametime 7.0 up to and including 8.5.2 does not enable an authentication requirement, which allows remote malicious users to read the configuration settings by examining a response me...
Ibm Lotus Sametime 7.5.1
Ibm Lotus Sametime 8.0.1
Ibm Lotus Sametime 7.5.1.2
Ibm Lotus Sametime 7.5.0.1
Ibm Lotus Sametime 8.0
Ibm Lotus Sametime 8.5.1
Ibm Lotus Sametime 8.5
Ibm Lotus Sametime 8.0.2
Ibm Lotus Sametime 7.0
Ibm Lotus Sametime 7.5
Ibm Lotus Sametime 8.5.2
Ibm Lotus Sametime 7.5.1.1
NA
CVE-2010-3398
Unspecified vulnerability in the webcontainer implementation in IBM Lotus Sametime Connect 8.5.1 before CF1 has unknown impact and attack vectors, aka SPRs LXUU87S57H and LXUU87S93W.
Ibm Lotus Sametime 8.0.1
Ibm Lotus Sametime 8.0
Ibm Lotus Sametime 7.5.1
Ibm Lotus Sametime 7.5
Ibm Lotus Sametime 8.5
Ibm Lotus Sametime 2.5
Ibm Lotus Sametime
Ibm Lotus Sametime 8.0.2
Ibm Lotus Sametime 7.0
Ibm Lotus Sametime 1.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »