Vulnerabilities (CVE)

Filtered by vendor Ibm Subscribe
Total 8310 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2016-2984 1 Ibm 2 General Parallel File System, Spectrum Scale 2026-06-17 6.9 MEDIUM 7.0 HIGH
IBM Spectrum Scale 4.1.1.x before 4.1.1.8 and 4.2.x before 4.2.0.4 and General Parallel File System (GPFS) 3.5.x before 3.5.0.32 and 4.1.x before 4.1.1.8 allow local users to gain privileges via crafted command-line parameters to a /usr/lpp/mmfs/bin/ setuid program.
CVE-2016-2983 1 Ibm 1 Tealeaf Customer Experience 2026-06-17 6.8 MEDIUM 8.1 HIGH
IBM Tealeaf Customer Experience 8.7, 8.8, and 9.0.2 could allow a remote attacker under unusual circumstances to read operational data or TLS session state for any active sessions, cause denial of service, or bypass security. IBM X-Force ID: 113999.
CVE-2016-2981 1 Ibm 1 Rational Collaborative Lifecycle Management 2026-06-17 2.1 LOW 6.8 MEDIUM
An undisclosed vulnerability in the CLM applications in IBM Jazz Team Server may allow unauthorized access to user credentials. IBM Reference #: 1999965.
CVE-2016-2980 1 Ibm 1 Sametime 2026-06-17 6.8 MEDIUM 6.3 MEDIUM
The Sametime WebPlayer 8.5.2 and 9.0 is vulnerable to a script injection where a malicious site can inject their own script by exploiting a vulnerability in the way that the WebPlayer works. IBM X-Force ID: 113993.
CVE-2016-2979 1 Ibm 1 Sametime 2026-06-17 3.5 LOW 5.4 MEDIUM
IBM Sametime Meeting Server 8.5.2 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 113945.
CVE-2016-2978 1 Ibm 1 Sametime 2026-06-17 2.1 LOW 3.3 LOW
IBM Sametime 8.5.2 and 9.0 could store potentially sensitive information from the browser cache locally that could be available to a local user. IBM X-Force ID: 113938.
CVE-2016-2977 1 Ibm 1 Sametime 2026-06-17 4.0 MEDIUM 4.3 MEDIUM
IBM Sametime Meeting Server 8.5.2 and 9.0 could allow a malicious user to lower other users hands in the meeting. IBM X-Force ID: 113937.
CVE-2016-2976 1 Ibm 1 Sametime 2026-06-17 4.0 MEDIUM 4.3 MEDIUM
IBM Sametime Meeting Server 8.5.2 and 9.0 could allow a meeting invitee to obtain previously cleared sensitive information by viewing the meeting report history. IBM X-Force ID: 113936.
CVE-2016-2975 1 Ibm 1 Sametime 2026-06-17 3.5 LOW 5.4 MEDIUM
IBM Sametime 8.5.2 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 113935.
CVE-2016-2974 1 Ibm 1 Sametime 2026-06-17 2.1 LOW 3.3 LOW
IBM Sametime Connect 8.5.2 and 9.0, after uninstalling the Sametime Rich Client, could disclose potentially sensitive information related to the Sametime environment as well as other users on the local machine of the user. IBM X-Force ID: 113934.
CVE-2016-2973 1 Ibm 1 Sametime 2026-06-17 3.5 LOW 5.4 MEDIUM
IBM Sametime Media Services 8.5.2 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 113899.
CVE-2016-2972 1 Ibm 1 Sametime 2026-06-17 2.1 LOW 7.8 HIGH
IBM Sametime Meeting Server 8.5.2 and 9.0 could store credentials of the Sametime Meetings user in the local cache of their browser which could be accessed by a local user. IBM X-Force ID: 113855.
CVE-2016-2971 1 Ibm 1 Sametime 2026-06-17 5.0 MEDIUM 5.3 MEDIUM
IBM Sametime Media Services 8.5.2 and 9.0 can disclose sensitive information in stack trace error logs that could aid an attacker in future attacks. IBM X-Force ID: 113898.
CVE-2016-2970 1 Ibm 1 Sametime 2026-06-17 4.0 MEDIUM 4.3 MEDIUM
IBM Sametime 8.5 and 9.0 meetings server may provide detailed information in an error message that may provide details about the application to possible attackers. IBM X-Force ID: 113851.
CVE-2016-2969 1 Ibm 1 Sametime 2026-06-17 4.0 MEDIUM 4.3 MEDIUM
IBM Sametime Meeting Server 8.5.2 and 9.0 may send replies that contain emails of people that should not be in these messages. IBM X-Force ID: 113850.
CVE-2016-2968 1 Ibm 1 Security Qradar Incident Forensics 2026-06-17 5.5 MEDIUM 6.5 MEDIUM
IBM Security QRadar Incident Forensics 7.2.x before 7.2.7 allows remote attackers to bypass authentication, and obtain sensitive information or modify data, via unspecified vectors.
CVE-2016-2967 1 Ibm 1 Sametime 2026-06-17 3.5 LOW 5.4 MEDIUM
IBM Sametime 8.5.2 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Sametime away message altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 113848.
CVE-2016-2966 1 Ibm 1 Sametime 2026-06-17 4.0 MEDIUM 4.3 MEDIUM
IBM Sametime 8.5.1 and 9.0 could allow an authenticated user to enumerate meeting rooms by guessing the meeting room id. IBM X-Force ID: 113847.
CVE-2016-2965 1 Ibm 1 Sametime 2026-06-17 4.3 MEDIUM 6.5 MEDIUM
IBM Sametime Meeting Server 8.5.2 and 9.0 is vulnerable to cross-site request forgery, caused by improper validation of user-supplied input. By persuading a user to visit a malicious link, a remote attacker could force the user to log out of Sametime. IBM X-Force ID: 113846.
CVE-2016-2964 1 Ibm 1 Sametime 2026-06-17 5.0 MEDIUM 5.3 MEDIUM
IBM Sametime 8.5.2 and 9.0 under certain conditions provides an error message to a user that is too detailed and may reveal details about the application. IBM X-Force ID: 113813.