exploitDog

CVE-2016-2966

Опубликовано: 29 авг. 2017

Источник: nvd

CVSS3: 4.3

CVSS2: 4

EPSS Низкий

Описание

IBM Sametime 8.5.1 and 9.0 could allow an authenticated user to enumerate meeting rooms by guessing the meeting room id. IBM X-Force ID: 113847.

Ссылки

http://www.ibm.com/support/docview.wss?uid=swg22006441
Patch
Vendor Advisory
http://www.securityfocus.com/bid/100572
https://exchange.xforce.ibmcloud.com/vulnerabilities/113847
VDB Entry
Vendor Advisory
http://www.ibm.com/support/docview.wss?uid=swg22006441
Patch
Vendor Advisory
http://www.securityfocus.com/bid/100572
https://exchange.xforce.ibmcloud.com/vulnerabilities/113847
VDB Entry
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ibm:sametime:8.5.1.0:*:*:*:*:*:*:*

cpe:2.3:a:ibm:sametime:8.5.1.1:*:*:*:*:*:*:*

cpe:2.3:a:ibm:sametime:8.5.2.0:*:*:*:*:*:*:*

cpe:2.3:a:ibm:sametime:8.5.2.1:*:*:*:*:*:*:*

cpe:2.3:a:ibm:sametime:9.0.0.0:*:*:*:*:*:*:*

cpe:2.3:a:ibm:sametime:9.0.0.1:*:*:*:*:*:*:*

cpe:2.3:a:ibm:sametime:9.0.1:*:*:*:*:*:*:*

EPSS

Процентиль: 44%

0.00212

Низкий

4.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-mcc7-wvgg-wq6v

CVSS3: 4.3

github

больше 3 лет назад

IBM Sametime 8.5.1 and 9.0 could allow an authenticated user to enumerate meeting rooms by guessing the meeting room id. IBM X-Force ID: 113847.

EPSS

Процентиль: 44%

0.00212

Низкий

4.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-200