| Max CVSS | 5.5 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2014-4748 | 4.3 |
Cross-site scripting (XSS) vulnerability in the Classic Meeting Server in IBM Sametime 8.x through 8.5.2.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
|
29-08-2017 - 01:35 | 26-07-2014 - 15:55 | |
| CVE-2014-4747 | 2.1 |
The Classic Meeting Server in IBM Sametime 8.x through 8.5.2.1 allows physically proximate attackers to discover a meeting password hash by leveraging access to an unattended workstation to read HTML source code within a victim's browser.
|
07-01-2017 - 03:00 | 26-07-2014 - 15:55 | |
| CVE-2014-3088 | 5.5 |
stconf.nsf in IBM Sametime Meeting Server 8.5.1 relies on the client to validate the file format used in wAttach?OpenForm multipart/form-data POST requests, which allows remote authenticated users to bypass intended upload restrictions by modifying t
|
07-01-2017 - 02:59 | 01-07-2014 - 20:55 |