CVSS: 5.0EPSS: 0%CPEs: 5EXPL: 0CVE-2014-4766
https://notcve.org/view.php?id=CVE-2014-4766
IBM Sametime Classic Meeting Server 8.0.x and 8.5.x allows remote attackers to obtain sensitive information by reading an exported Record and Playback (RAP) file. IBM Sametime Classic Meeting Server 8.0.x y 8.5.x permite a atacantes remotos obtener información sensible mediante la lectura de un fichero exportado de grabación y reproducción (Record and Playback 'RAP'). • http://secunia.com/advisories/61847 http://www-01.ibm.com/support/docview.wss?uid=swg21687361 https://exchange.xforce.ibmcloud.com/vulnerabilities/94793 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 3.5EPSS: 0%CPEs: 17EXPL: 0CVE-2013-0535
https://notcve.org/view.php?id=CVE-2013-0535
Multiple cross-site scripting (XSS) vulnerabilities in the Classic Meeting Server in IBM Sametime 7.5.1.2 through 8.5.2.1 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados en Classic Meeting Server en IBM Sametime v7.5.1.2 hasta v8.5.2.1 que permite a usuarios autenticados inyectar secuencias arbitrarias de comandos web o HTML a través de vectores sin especificar. • http://www-01.ibm.com/support/docview.wss?uid=swg21635185 http://www-01.ibm.com/support/docview.wss?uid=swg21635545 https://exchange.xforce.ibmcloud.com/vulnerabilities/82657 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •