Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm sametime 8.5.0.0 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2012-3308
Cross-site scripting (XSS) vulnerability in IBM Sametime 8.0.2 up to and including 8.5.2.1 allows remote malicious users to inject arbitrary web script or HTML via an IM chat.
Ibm Sametime 8.0.2.0
Ibm Sametime 8.0.2.1
Ibm Sametime 8.5.2.1
Ibm Sametime 8.5.1.1
Ibm Sametime 8.5.2.0
Ibm Sametime 8.5.0.0
Ibm Sametime 8.5.1.0
187
VMScore
CVE-2014-4747
The Classic Meeting Server in IBM Sametime 8.x up to and including 8.5.2.1 allows physically proximate malicious users to discover a meeting password hash by leveraging access to an unattended workstation to read HTML source code within a victim's browser.
Ibm Sametime 8.0.1.0
Ibm Sametime 8.0.1.1
Ibm Sametime 8.5.2.1
Ibm Sametime 8.0.2.0
Ibm Sametime 8.0.2.1
Ibm Sametime 8.5.0.0
Ibm Sametime 8.5.1.0
Ibm Sametime 8.0.0.0
Ibm Sametime 8.5.1.1
Ibm Sametime 8.5.2.0
383
VMScore
CVE-2014-4748
Cross-site scripting (XSS) vulnerability in the Classic Meeting Server in IBM Sametime 8.x up to and including 8.5.2.1 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL.
Ibm Sametime 8.5.1.0
Ibm Sametime 8.5.1.1
Ibm Sametime 8.0.0.0
Ibm Sametime 8.0.1.0
Ibm Sametime 8.5.2.0
Ibm Sametime 8.5.2.1
Ibm Sametime 8.0.1.1
Ibm Sametime 8.0.2.0
Ibm Sametime 8.0.2.1
Ibm Sametime 8.5.0.0
383
VMScore
CVE-2014-0906
The Meeting Server in IBM Sametime 8.x up to and including 8.5.2.1 and 9.x up to and including 9.0.0.1 does not check whether a session cookie is current, which allows remote malicious users to conduct user-search actions by leveraging possession of a (1) expired or (2) invalidat...
Ibm Sametime 9.0.0.0
Ibm Sametime 8.5.2.1
Ibm Sametime 8.0.1.1
Ibm Sametime 8.0.1.0
Ibm Sametime 8.5.1.1
Ibm Sametime 8.5.2.0
Ibm Sametime 8.0.0.0
Ibm Sametime 8.0.2.1
Ibm Sametime 8.0.2.0
Ibm Sametime 8.5.1.0
Ibm Sametime 8.5.0.0
258
VMScore
CVE-2013-3984
The Meeting Server in IBM Sametime 8.x up to and including 8.5.2.1 and 9.x up to and including 9.0.0.1 does not set the secure flag for an unspecified cookie in an https session, which makes it easier for remote malicious users to capture this cookie by intercepting its transmiss...
Ibm Sametime 8.5.1.0
Ibm Sametime 8.5.0.0
Ibm Sametime 8.0.2.1
Ibm Sametime 8.0.2.0
Ibm Sametime 8.0.1.1
Ibm Sametime 8.5.1.1
Ibm Sametime 8.5.2.0
Ibm Sametime 9.0.0.0
Ibm Sametime 8.5.2.1
Ibm Sametime 8.0.1.0
Ibm Sametime 8.0.0.0
383
VMScore
CVE-2013-6733
Cross-site scripting (XSS) vulnerability in the Web Application in the Classic Meeting Server in IBM Sametime 7.5.1.2 up to and including 8.5.2.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Ibm Sametime 8.5.0.0
Ibm Sametime 8.5.1.0
Ibm Sametime 8.0.2.0
Ibm Sametime 8.0.2.1
Ibm Sametime 7.5.1.2
Ibm Sametime 8.0.0.0
Ibm Sametime 8.5.1.1
Ibm Sametime 8.5.2.0
Ibm Sametime 8.0.1.0
Ibm Sametime 8.0.1.1
Ibm Sametime 8.5.2.1
445
VMScore
CVE-2014-3867
The Meeting Server in IBM Sametime 8.x up to and including 8.5.2.1 and 9.x up to and including 9.0.0.1 does not include the HTTPOnly flag in a Set-Cookie header for an unspecified cookie, which makes it easier for remote malicious users to obtain potentially sensitive information...
Ibm Sametime 8.5.2.0
Ibm Sametime 8.5.1.0
Ibm Sametime 9.0.0.1
Ibm Sametime 9.0.0.0
Ibm Sametime 8.0.2.0
Ibm Sametime 8.0.1.1
Ibm Sametime 8.5.2.1
Ibm Sametime 8.5.1.1
Ibm Sametime 8.0.1.0
Ibm Sametime 8.0.0.0
Ibm Sametime 8.5.0.0
Ibm Sametime 8.0.2.1
445
VMScore
CVE-2013-3981
The Meeting Server in IBM Sametime 8.x up to and including 8.5.2.1 and 9.x up to and including 9.0.0.1 allows remote malicious users to download avatar photos of arbitrary users via unspecified vectors.
Ibm Sametime 9.0.0.1
Ibm Sametime 8.5.2.0
Ibm Sametime 8.5.1.0
Ibm Sametime 8.5.2.1
Ibm Sametime 8.5.1.1
Ibm Sametime 8.0.0.0
Ibm Sametime 9.0.0.0
Ibm Sametime 8.0.1.1
Ibm Sametime 8.0.1.0
Ibm Sametime 8.5.0.0
Ibm Sametime 8.0.2.1
Ibm Sametime 8.0.2.0
312
VMScore
CVE-2014-3014
Cross-site scripting (XSS) vulnerability in the Meeting Server in IBM Sametime 8.x up to and including 8.5.2.1 and 9.x up to and including 9.0.0.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Ibm Sametime 9.0.0.1
Ibm Sametime 8.0.2.1
Ibm Sametime 8.0.2.0
Ibm Sametime 8.5.1.0
Ibm Sametime 8.5.0.0
Ibm Sametime 9.0.0.0
Ibm Sametime 8.5.2.1
Ibm Sametime 8.0.1.1
Ibm Sametime 8.0.1.0
Ibm Sametime 8.5.1.1
Ibm Sametime 8.5.2.0
Ibm Sametime 8.0.0.0
383
VMScore
CVE-2013-3046
The Meeting Server in IBM Sametime 8.x up to and including 8.5.2.1 and 9.x up to and including 9.0.0.1 does not send the HSTS Strict-Transport-Security header, which makes it easier for man-in-the-middle malicious users to hijack sessions or obtain sensitive information by levera...
Ibm Sametime 8.5.2.1
Ibm Sametime 8.5.1.1
Ibm Sametime 8.0.1.0
Ibm Sametime 8.0.0.0
Ibm Sametime 8.5.2.0
Ibm Sametime 8.5.1.0
Ibm Sametime 8.5.0.0
Ibm Sametime 8.0.2.1
Ibm Sametime 9.0.0.1
Ibm Sametime 9.0.0.0
Ibm Sametime 8.0.2.0
Ibm Sametime 8.0.1.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »