CVE-2013-3044

CWE-2643 documents3 sources

Severity

3.5LOW

EPSS

0.2%

top 63.93%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Lotus Sametime

Timeline

PublishedNov 9

Latest updateMay 17

Description

The Enterprise Meeting Server in IBM Lotus Sametime 8.5.2 and 8.5.2.1 allows remote authenticated users to spoof the origin of chat messages, or compose anonymous chat messages, by leveraging meeting-attendance privileges.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 6.8 | Impact: 2.9

Affected Packages1 packages

▶NVDibm/lotus_sametime8.5.2, 8.5.2.1+1

🔴Vulnerability Details

GHSA

GHSA-j5jc-p5q2-hc96: The Enterprise Meeting Server in IBM Lotus Sametime 8↗2022-05-17

▶

CVEList

CVE-2013-3044: The Enterprise Meeting Server in IBM Lotus Sametime 8↗2013-11-09

▶