User SID can be modified resulting in an Arbitrary File Upload or deletion of directories causing a Denial of Service. When interacting in a normal matter with the Sametime chat application, users hold a cookie containing their session ID (SID). This value is also used when sending chat messages, receiving notifications and/or transferring files.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: HCL

Published: 2022-05-12T21:25:27.080788Z

Updated: 2024-09-17T01:40:42.492Z

Reserved: 2021-02-26T00:00:00

Link: CVE-2021-27771

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-05-12T22:15:11.880

Modified: 2024-11-21T05:58:32.233

Link: CVE-2021-27771

cve-icon Redhat

No data.