Known Vulnerabilities for Sametime by Hcltech
Listed below are 7 of the newest known vulnerabilities associated with "Sametime" by "Hcltech".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-31966 json | HCL Sametime is vulnerable to broken server-side validation. While the application performs client-side input checks, these a... | Not Provided | 2026-03-17 | 2026-03-17 |
| CVE-2022-42446 json | Starting with Sametime 12, anonymous users are enabled by default. After logging in as an anonymous user, one has the ability... | 6.5 - MEDIUM | 2022-12-12 | 2023-11-07 |
| CVE-2021-27773 json | This vulnerability allows users to execute a clickjacking attack in the meeting's chat. | 4.3 - MEDIUM | 2022-05-12 | 2022-05-24 |
| CVE-2021-27772 json | Users are able to read group conversations without actively taking part in them. Next to one to one conversations, users are ... | 6.5 - MEDIUM | 2022-05-12 | 2022-07-29 |
| CVE-2021-27771 json | User SID can be modified resulting in an Arbitrary File Upload or deletion of directories causing a Denial of Service. When i... | 7.6 - HIGH | 2022-05-12 | 2022-05-24 |
| CVE-2021-27770 json | The vulnerability was discovered within the “FaviconService”. The service takes a base64-encoded URL which is then reques... | 8.8 - HIGH | 2022-05-12 | 2023-06-30 |
| CVE-2021-27769 json | Information leakage occurs when a website reveals information that could aid an attacker to further exploit the system. This ... | 5.3 - MEDIUM | 2022-05-12 | 2022-07-29 |