CVE-2016-2972

CWE-2553 documents3 sources
Severity
7.8HIGH
EPSS
0.1%
top 80.21%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Sametime
Timeline
PublishedAug 29
Latest updateMay 17

Description

IBM Sametime Meeting Server 8.5.2 and 9.0 could store credentials of the Sametime Meetings user in the local cache of their browser which could be accessed by a local user. IBM X-Force ID: 113855.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5ibm/sametime5 versions+4
NVDibm/sametime5 versions+4

Patches

Patch: www.ibm.comPatch: www.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-q8x6-2rgh-ghrq: IBM Sametime Meeting Server 82022-05-17
CVEList
CVE-2016-2972: IBM Sametime Meeting Server 82017-08-29
CVE-2016-2972 (HIGH CVSS 7.8) | IBM Sametime Meeting Server 8.5.2 a | cvebase.io