User SID can be modified resulting in an Arbitrary File Upload or deletion of directories causing a Denial of Service. When interacting in a normal matter with the Sametime chat application, users hold a cookie containing their session ID (SID). This value is also used when sending chat messages, receiving notifications and/or transferring files.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: HCL
Published: 2022-05-12T21:25:27.080788Z
Updated: 2024-09-17T01:40:42.492Z
Reserved: 2021-02-26T00:00:00
Link: CVE-2021-27771
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-05-12T22:15:11.880
Modified: 2024-11-21T05:58:32.233
Link: CVE-2021-27771
Redhat
No data.