| Max CVSS | 6.0 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-2973 | 3.5 |
IBM Sametime Media Services 8.5.2 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure w
|
07-09-2017 - 01:29 | 29-08-2017 - 18:29 | |
| CVE-2016-2959 | 4.0 |
IBM Sametime Meeting Server 8.5.2 and 9.0 could allow a meeting room manager to remove the primary managers privileges. IBM X-Force ID: 113804.
|
07-09-2017 - 01:29 | 29-08-2017 - 18:29 | |
| CVE-2016-2972 | 2.1 |
IBM Sametime Meeting Server 8.5.2 and 9.0 could store credentials of the Sametime Meetings user in the local cache of their browser which could be accessed by a local user. IBM X-Force ID: 113855.
|
07-09-2017 - 01:29 | 29-08-2017 - 18:29 | |
| CVE-2016-2969 | 4.0 |
IBM Sametime Meeting Server 8.5.2 and 9.0 may send replies that contain emails of people that should not be in these messages. IBM X-Force ID: 113850.
|
07-09-2017 - 01:29 | 29-08-2017 - 18:29 | |
| CVE-2016-2971 | 5.0 |
IBM Sametime Media Services 8.5.2 and 9.0 can disclose sensitive information in stack trace error logs that could aid an attacker in future attacks. IBM X-Force ID: 113898.
|
07-09-2017 - 01:29 | 29-08-2017 - 18:29 | |
| CVE-2016-2965 | 4.3 |
IBM Sametime Meeting Server 8.5.2 and 9.0 is vulnerable to cross-site request forgery, caused by improper validation of user-supplied input. By persuading a user to visit a malicious link, a remote attacker could force the user to log out of Sametime
|
07-09-2017 - 01:29 | 29-08-2017 - 18:29 | |
| CVE-2016-2979 | 3.5 |
IBM Sametime Meeting Server 8.5.2 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure w
|
07-09-2017 - 01:29 | 29-08-2017 - 18:29 | |
| CVE-2016-2977 | 4.0 |
IBM Sametime Meeting Server 8.5.2 and 9.0 could allow a malicious user to lower other users hands in the meeting. IBM X-Force ID: 113937.
|
07-09-2017 - 01:29 | 29-08-2017 - 18:29 | |
| CVE-2016-0354 | 6.0 |
IBM Sametime Enterprise Meeting Server 8.5.2 and 9.0 could allow an authenticated user to upload a malicious file to a Sametime meeting room, that could be downloaded by unsuspecting users which could be executed with user privileges. IBM X-Force ID:
|
07-09-2017 - 01:29 | 29-08-2017 - 18:29 | |
| CVE-2016-0356 | 4.0 |
IBM Sametime Enterprise Meeting Server 8.5.2 and 9.0 could allow an authenticated user that has been invited to a Sametime meeting room, to cause the screen sharing to cease through the use of cross-site request forgery. IBM X-Force ID: 111895.
|
07-09-2017 - 01:29 | 29-08-2017 - 18:29 | |
| CVE-2016-0355 | 4.0 |
IBM Sametime Enterprise Meeting Server 8.5.2 and 9.0 could allow an authenticated user that has been invited to a Sametime meeting room, to cause the screen sharing to cease through the use of cross-site request forgery. IBM X-Force ID: 111894.
|
07-09-2017 - 01:29 | 29-08-2017 - 18:29 | |
| CVE-2016-10503 | 4.0 |
IBM Sametime Meeting Server 8.5.2 and 9.0 could allow an authenticated and invited user of Sametime meeting to lower any or all hands in an e-meeting, thus spoofing results of votes in the meeting. IBM X-Force ID: 113803.
|
02-09-2017 - 15:28 | 29-08-2017 - 18:29 |