| Max CVSS | 5.0 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-0358 | 4.0 |
IBM Sametime 8.5.2 and 9.0 could allow an unauthorized authenticated user to enumerate group chat ID numbers and join meetings that he was not invited to. IBM X-Force ID: 111928.
|
03-09-2017 - 13:19 | 29-08-2017 - 21:29 | |
| CVE-2016-2966 | 4.0 |
IBM Sametime 8.5.1 and 9.0 could allow an authenticated user to enumerate meeting rooms by guessing the meeting room id. IBM X-Force ID: 113847.
|
03-09-2017 - 01:29 | 29-08-2017 - 21:29 | |
| CVE-2016-2975 | 3.5 |
IBM Sametime 8.5.2 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted
|
03-09-2017 - 01:29 | 29-08-2017 - 21:29 | |
| CVE-2016-2967 | 3.5 |
IBM Sametime 8.5.2 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Sametime away message altering the intended functionality potentially leading to credentials disclosure within
|
03-09-2017 - 01:29 | 29-08-2017 - 21:29 | |
| CVE-2016-2964 | 5.0 |
IBM Sametime 8.5.2 and 9.0 under certain conditions provides an error message to a user that is too detailed and may reveal details about the application. IBM X-Force ID: 113813.
|
03-09-2017 - 01:29 | 29-08-2017 - 21:29 | |
| CVE-2016-2976 | 4.0 |
IBM Sametime Meeting Server 8.5.2 and 9.0 could allow a meeting invitee to obtain previously cleared sensitive information by viewing the meeting report history. IBM X-Force ID: 113936.
|
03-09-2017 - 01:29 | 29-08-2017 - 21:29 | |
| CVE-2016-2978 | 2.1 |
IBM Sametime 8.5.2 and 9.0 could store potentially sensitive information from the browser cache locally that could be available to a local user. IBM X-Force ID: 113938.
|
03-09-2017 - 01:29 | 29-08-2017 - 21:29 |