- Description
- The client implementation in IBM Sametime 8.5.1 through 8.5.2.1, as used in Sametime Connect client, Sametime Advanced Connect client, Sametime Advanced Web client, and other products, allows remote authenticated users to send commands to individual chat users, or to all participants in a chat room, via a crafted Sametime Instant Message (IM).
- Source
- psirt@us.ibm.com
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 3.5
- Impact score
- 2.9
- Exploitability score
- 6.8
- Vector string
- AV:N/AC:M/Au:S/C:N/I:P/A:N
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ibm:lotus_sametime:8.5.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F8112891-92F2-4EB9-9BBF-6FAB0C415368"
},
{
"criteria": "cpe:2.3:a:ibm:lotus_sametime:8.5.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "027CB674-3C7A-44A0-8912-508BD3FA6CC3"
},
{
"criteria": "cpe:2.3:a:ibm:sametime:8.5.2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4D106630-D04F-406F-A3BD-029777B8E8F9"
},
{
"criteria": "cpe:2.3:a:ibm:sametime:8.5.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A84C4658-AEE7-4C63-A188-795B8FEB3A47"
}
],
"operator": "OR"
}
]
}
]