Cross site request forgery (csrf)

2017-08-2918:29:00

PRIOn knowledge base

www.prio-n.com

6.2 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

35.2%

JSON

IBM Sametime Enterprise Meeting Server 8.5.2 and 9.0 could allow an authenticated user that has been invited to a Sametime meeting room, to cause the screen sharing to cease through the use of cross-site request forgery. IBM X-Force ID: 111895.

CPENameOperatorVersion
sametimeeq9.0.0.0
sametimeeq8.5.2.1
sametimeeq9.0.0.1
sametimeeq8.5.2.0
sametimeeq9.0.1

Name	Operator	Version
sametime	eq	9.0.0.0
sametime	eq	8.5.2.1
sametime	eq	9.0.0.1
sametime	eq	8.5.2.0
sametime	eq	9.0.1

References

www.ibm.com/support/docview.wss?uid=swg22006439

www.securityfocus.com/bid/100599

www.securitytracker.com/id/1039231

exchange.xforce.ibmcloud.com/vulnerabilities/111895