Known Vulnerabilities
CVE-2023-50355
HCL Sametime is impacted by the error messages containing sensitive information. An attacker can use this information to launch another, more focused attack.
LOW
CVSS 3.6
Published Oct 23, 2024
CVE-2024-30124
HCL Sametime is impacted by insecure services in-use on the UIM client by default. An unused legacy REST service was enabled by default using the HTTP protocol. An attacker could potentially use this service endpoint maliciously.
MEDIUM
CVSS 4.0
Published Oct 23, 2024
CVE-2024-30122
HCL Sametime is impacted by misconfigured security related HTTP headers. It was identified that some HTTP headers were missing on web service responses. This will lead to less secure browser default treatment for the policies controlled by these headers.
MEDIUM
CVSS 5.8
Published Oct 23, 2024