Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Connect client in IBM Sametime 8.5.1, 8.5.1.1, 8.5.1.2, 8.5.2, 8.5.2.1, 9.0, and 9.0.0.1, when a certain com.ibm.collaboration.realtime.telephony.*.level setting is used, logs cleartext passwords during Audio/Video chat sessions, which allows local users to obtain sensitive information by reading a log file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Sametime 安全漏洞
Vulnerability Description
IBM Sametime是美国IBM公司的一套下一代社交通信工具。该工具通过集成音频语音、数据和视频,帮助用户实现实时业务协作。 IBM Sametime的Connect客户端存在安全漏洞,该漏洞源于用户使用Audio/Video聊天会话时以明文记录密码。本地攻击者可利用该漏洞获取Sametime用户的密码。以下版本受到影响:IBM Sametime 8.5.1,8.5.1.1,8.5.1.2,8.5.2,8.5.2.1,9.0,9.0.0.1。
CVSS Information
N/A
Vulnerability Type
N/A