Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

Sametime — Vulnerabilities & Security Advisories 33

All 33 CVE vulnerabilities found in Sametime, with AI-generated Chinese analysis, references, and POCs.

This page aggregates known Common Weakness Enumeration (CWE) vulnerabilities associated with IBM Sametime. It serves as a centralized resource for tracking security issues specific to this collaboration software platform. The content covers a wide spectrum of vulnerability types, including command injection, cross-site scripting, and privilege escalation flaws that have been publicly disclosed or identified through security research. The time range spans from the earliest recorded instances of these weaknesses to the most recent advisories and patches released by the vendor. Readers can use this page to track a vendor's advisories as they address specific security risks over time. It also allows users to understand a weakness class by examining how it manifests in a particular software environment. Furthermore, the page provides a comprehensive look at a product's vulnerability history, helping security professionals assess the long-term security posture of Sametime. This information is critical for administrators responsible for maintaining the integrity and confidentiality of enterprise communication systems. By reviewing these aggregated data points, teams can prioritize remediation efforts and implement effective mitigation strategies. The goal is to provide transparency into the security landscape of the product, enabling informed decision-making regarding updates, configuration changes, and deployment strategies. This approach supports proactive security management rather than reactive patching alone.

Vendor: IBM

CVE IDTitleCVSSSeverityPublished
CVE-2025-62320 HTML Injection Leading to Data Exfiltration to External Server vulnerability affects HCL Unica Platform CWE-79 4.7 Medium2026-03-17
CVE-2025-31966 Boolean-Based SQL Injection in Multiple Unica Components CWE-20 2.7 Low2026-03-17
CVE-2026-21791 HCL Sametime for Android is affected by sensitive information disclosure CWE-532 3.3 Low2026-03-10
CVE-2023-50355 HCL Sametime is impacted by generation of error messages containing sensitive information CWE-209 3.6 Low2024-10-23
CVE-2024-30124 HCL Sametime is impacted by insecure services 4.0 Medium2024-10-23
CVE-2024-30122 HCL Sametime is impacted by misconfigured security related HTTP headers 5.8 Medium2024-10-23
CVE-2021-27773 HCL Sametime is vulnerable to clickjacking CWE-451 4.2 Medium2022-05-12
CVE-2021-27772 HCL Sametime is vulnerable to an information disclosure CWE-285 7.1 High2022-05-12
CVE-2021-27771 HCL Sametime is susceptible a file transfer service vulnerability CWE-434 8.2 High2022-05-12
CVE-2021-27770 HCL Sametime is vulnerable to arbitrary HTTP requests CWE-472 6.8 Medium2022-05-12
CVE-2021-27769 HCL Sametime is vulnerable to an information disclosure CWE-472 5.3 Medium2022-05-12
CVE-2016-2975 IBM Sametime 跨站脚本漏洞 5.4 -2017-08-29
CVE-2016-2980 IBM Sametime WebPlayer 安全漏洞 6.3 -2017-08-29
CVE-2016-2978 IBM Sametime 安全漏洞 3.3 -2017-08-29
CVE-2016-2976 IBM Sametime Meeting Server 安全漏洞 4.3 -2017-08-29
CVE-2016-2974 IBM Sametime Connect 信息泄露漏洞 3.3 -2017-08-29
CVE-2016-0358 IBM Sametime 安全漏洞 4.3 -2017-08-29
CVE-2016-2964 IBM Sametime 安全漏洞 5.3 -2017-08-29
CVE-2016-2966 IBM Sametime 安全漏洞 4.3 -2017-08-29
CVE-2016-2967 IBM Sametime 跨站脚本漏洞 5.4 -2017-08-29
CVE-2016-0355 IBM Sametime Enterprise Meeting Server 跨站请求伪造漏洞 6.5 -2017-08-29
CVE-2016-0356 IBM Sametime Enterprise Meeting Server 跨站请求伪造漏洞 6.5 -2017-08-29
CVE-2016-10503 IBM Sametime Meeting Server 输入验证漏洞 4.3 -2017-08-29
CVE-2016-2959 IBM Sametime Meeting Server 权限许可和访问控制漏洞 2.7 -2017-08-29
CVE-2016-2965 IBM Sametime Meeting Server 跨站请求伪造漏洞 6.5 -2017-08-29
CVE-2016-2969 IBM Sametime Meeting Server 信息泄露漏洞 4.3 -2017-08-29
CVE-2016-2971 IBM Sametime Meeting Server 安全漏洞 5.3 -2017-08-29
CVE-2016-2979 IBM Sametime Meeting Server 跨站脚本漏洞 5.4 -2017-08-29
CVE-2016-2972 IBM Sametime Meeting Server 信任管理漏洞 7.8 -2017-08-29
CVE-2016-2977 IBM Sametime Meeting Server 输入验证漏洞 5.4 -2017-08-29

All 33 known CVE vulnerabilities affecting Sametime with full Chinese analysis, references, and POCs where available.