Lucene search

IbmCVE-2013-3045

HistoryNov 09, 2013 - 1:55 a.m.

CVE-2013-3045

2013-11-0901:55:04

CWE-20

ibm

web.nvd.nist.gov

cve-2013-3045

ibm lotus sametime

enterprise meeting server

remote authentication

crafted links

security vulnerability

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

AI Score

6.2

Confidence

Low

EPSS

0.001

Percentile

29.8%

JSON

The Enterprise Meeting Server in IBM Lotus Sametime 8.5.2 and 8.5.2.1 allows remote authenticated users to share crafted links via the Library function.

Affected configurations

Nvd

Node

ibmlotus_sametimeMatch8.5.2

ibmlotus_sametimeMatch8.5.2.1

VendorProductVersionCPE
ibmlotus_sametime8.5.2cpe:2.3:a:ibm:lotus_sametime:8.5.2:*:*:*:*:*:*:*
ibmlotus_sametime8.5.2.1cpe:2.3:a:ibm:lotus_sametime:8.5.2.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	lotus_sametime	8.5.2	cpe:2.3:a:ibm:lotus_sametime:8.5.2:::::::*
ibm	lotus_sametime	8.5.2.1	cpe:2.3:a:ibm:lotus_sametime:8.5.2.1:::::::*

References

www-01.ibm.com/support/docview.wss?uid=swg21654355

exchange.xforce.ibmcloud.com/vulnerabilities/84816

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

AI Score

6.2

Confidence

Low

EPSS

0.001

Percentile

29.8%

JSON

Related for CVE-2013-3045