CVE-2016-10503Improper Input Validation in IBM Sametime

CWE-20Improper Input Validation3 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
0.2%
top 62.37%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Sametime
Timeline
PublishedAug 29
Latest updateMay 17

Description

IBM Sametime Meeting Server 8.5.2 and 9.0 could allow an authenticated and invited user of Sametime meeting to lower any or all hands in an e-meeting, thus spoofing results of votes in the meeting. IBM X-Force ID: 113803.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages2 packages

CVEListV5ibm/sametime5 versions+4
NVDibm/sametime5 versions+4

Patches

Patch: www.ibm.comPatch: www.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-fxhq-hqp8-qpjg: IBM Sametime Meeting Server 82022-05-17
CVEList
CVE-2016-10503: IBM Sametime Meeting Server 82017-08-29
CVE-2016-10503 — Improper Input Validation in IBM | cvebase