Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sametime vulnerabilities and exploits
(subscribe to this query)
4.1
CVSSv3
CVE-2023-45716
Sametime is impacted by sensitive information passed in URL.
Hcltech Sametime
8.8
CVSSv3
CVE-2019-10297
Jenkins Sametime Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system.
Jenkins Sametime
NA
CVE-2014-3015
Cross-site request forgery (CSRF) vulnerability in the Web player in IBM Sametime Proxy Server and Web Client 9.0 up to and including 9.0.0.1 allows remote malicious users to hijack the authentication of arbitrary users for requests that insert XSS sequences.
Ibm Sametime Proxy Server And Web Client 9.0.0.1
Ibm Sametime Proxy Server And Web Client 9.0.0.0
5.5
CVSSv3
CVE-2021-27755
"Sametime Android potential path traversal vulnerability when using File class"
Hcltech Hcl Sametime
8.8
CVSSv3
CVE-2021-27770
The vulnerability exists within the “FaviconService”. The service takes a base64-encoded URL which is then requested by the webserver. We assume this service is used by the “meetings”-function where users can specify an external URL where the online meetin...
Hcltech Sametime 11.6
6.5
CVSSv3
CVE-2021-27772
Users are able to read group conversations without actively taking part in them. Next to one to one conversations, users are able to start group conversations with multiple users. It was found possible to obtain the contents of these group conversations without being part of it. ...
Hcltech Sametime 11.6
6.5
CVSSv3
CVE-2022-42446
Starting with Sametime 12, anonymous users are enabled by default. After logging in as an anonymous user, one has the ability to browse the User Directory and potentially create chats with internal users.
Hcltech Sametime 12.0
NA
CVE-2007-4142
Cross-site scripting (XSS) vulnerability in IBM Lotus Sametime Server 7.5.1 prior to 20070731 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors involving a crafted Sametime meeting.
Ibm Lotus Sametime
5.5
CVSSv3
CVE-2021-27753
"Sametime Android PathTraversal Vulnerability"
Hcltech Hcl Sametime
5.3
CVSSv3
CVE-2021-27769
Information leakage occurs when a website reveals information that could aid an malicious user to further exploit the system. This information may or may not be sensitive and does not automatically mean a breach is likely to occur. Overall, any information that could be used for ...
Hcltech Sametime 11.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2018-25103
CVE-2024-36279
CVE-2024-38457
elevation of privilege
CVE-2024-27801
CVE-2024-30103
NULL pointer dereference
CVE-2024-6057
XML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
NEXT »