AI Score
Confidence
Low
EPSS
Percentile
61.9%
The Meeting Server in IBM Sametime 8.5.2 through 8.5.2.1 and 9.x through 9.0.0.1 does not validate URLs in Cookie headers before using them in redirects, which has unspecified impact and remote attack vectors.
www-01.ibm.com/support/docview.wss?uid=swg21662928
exchange.xforce.ibmcloud.com/vulnerabilities/84966