Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sametime vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2016-0358
IBM Sametime 8.5.2 and 9.0 could allow an unauthorized authenticated user to enumerate group chat ID numbers and join meetings that he was not invited to. IBM X-Force ID: 111928.
Ibm Sametime 9.0.0.0
Ibm Sametime 9.0.0.1
Ibm Sametime 9.0.1
Ibm Sametime 8.5.2.1
Ibm Sametime 8.5.2.0
3.5
CVSSv2
CVE-2013-0533
Cross-site scripting (XSS) vulnerability in the Sametime Links server in IBM Sametime 8.0.2 up to and including 8.5.2.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Ibm Lotus Sametime 8.5.2
Ibm Lotus Sametime 8.5.2.1
Ibm Lotus Sametime 8.0.2.1
Ibm Lotus Sametime 8.5
Ibm Lotus Sametime 8.5.1
Ibm Lotus Sametime 8.5.1.1
Ibm Lotus Sametime 8.0.2
5
CVSSv2
CVE-2013-3978
The Meeting Server in IBM Sametime 8.5.2 up to and including 8.5.2.1 and 9.x up to and including 9.0.0.1 does not send the appropriate HTTP response headers to prevent unwanted caching by a web browser, which allows remote malicious users to obtain sensitive information by levera...
Ibm Sametime 8.5.2.0
Ibm Sametime 9.0.0.1
Ibm Sametime 8.5.2.1
Ibm Sametime 9.0.0.0
7.5
CVSSv2
CVE-2013-3983
The Meeting Server in IBM Sametime 8.5.2 up to and including 8.5.2.1 and 9.x up to and including 9.0.0.1 does not validate URLs in Cookie headers before using them in redirects, which has unspecified impact and remote attack vectors.
Ibm Sametime 9.0.0.0
Ibm Sametime 9.0.0.1
Ibm Sametime 8.5.2.0
Ibm Sametime 8.5.2.1
6.8
CVSSv2
CVE-2013-3988
The Meeting Server in IBM Sametime 8.5.2 up to and including 8.5.2.1 and 9.x up to and including 9.0.0.1 allows remote malicious users to conduct clickjacking attacks via unspecified vectors.
Ibm Sametime 8.5.2.1
Ibm Sametime 9.0.0.0
Ibm Sametime 9.0.0.1
Ibm Sametime 8.5.2.0
7.5
CVSSv2
CVE-2013-6742
The Meeting Server in IBM Sametime 8.5.2 up to and including 8.5.2.1 and 9.x up to and including 9.0.0.1 do not have an off autocomplete attribute for a password field, which makes it easier for remote malicious users to obtain access by leveraging an unattended workstation.
Ibm Sametime 8.5.2.1
Ibm Sametime 9.0.0.0
Ibm Sametime 9.0.0.1
Ibm Sametime 8.5.2.0
3.5
CVSSv2
CVE-2013-6743
Cross-site scripting (XSS) vulnerability in the Meeting Server in IBM Sametime 8.5.2 up to and including 8.5.2.1 and 9.x up to and including 9.0.0.1 allows remote authenticated users to inject arbitrary web script or HTML via vectors involving an IMG element.
Ibm Sametime 9.0.0.0
Ibm Sametime 9.0.0.1
Ibm Sametime 8.5.2.0
Ibm Sametime 8.5.2.1
3.5
CVSSv2
CVE-2013-0553
The client implementation in IBM Sametime 8.5.1 up to and including 8.5.2.1, as used in Sametime Connect client, Sametime Advanced Connect client, Sametime Advanced Web client, and other products, allows remote authenticated users to send commands to individual chat users, or to ...
Ibm Lotus Sametime 8.5.1.1
Ibm Sametime 8.5.2.0
Ibm Sametime 8.5.2.1
Ibm Lotus Sametime 8.5.1
5
CVSSv2
CVE-2013-6727
The Connect client in IBM Sametime 8.5.2 up to and including 8.5.2.1 and 9.0 before HF1 does not properly restrict unsigned Java plugins, which allows remote malicious users to obtain sensitive information via unspecified vectors.
Ibm Sametime 8.5.2.0
Ibm Sametime 8.5.2.1
Ibm Sametime 9.0.0.0
4.3
CVSSv2
CVE-2011-1106
Cross-site scripting (XSS) vulnerability in stcenter.nsf in the server in IBM Lotus Sametime allows remote malicious users to inject arbitrary web script or HTML via the authReasonCode parameter in an OpenDatabase action.
Ibm Lotus Sametime
Ibm Lotus Sametime 8.0
Ibm Lotus Sametime 8.0.1
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »