Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Meeting Server in IBM Sametime 8.5.2 through 8.5.2.1 and 9.x through 9.0.0.1 does not validate URLs in Cookie headers before using them in redirects, which has unspecified impact and remote attack vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Sametime Meeting Server 输入验证漏洞
Vulnerability Description
IBM Sametime是美国IBM公司的一套下一代社交通信工具。该工具通过集成音频语音、数据和视频,帮助用户实现实时业务协作。 IBM Sametime 8.5.2至8.5.2.1版本和9.x至9.0.0.1版本中的Meeting Server中存在安全漏洞,该漏洞源于程序没有验证Cookie中的URL。攻击者可利用该漏洞将用户重定向到任意网站。
CVSS Information
N/A
Vulnerability Type
N/A