CVE-2013-0534

The Connect client in IBM Sametime 8.5.1, 8.5.1.1, 8.5.1.2, 8.5.2, and 8.5.2.1, as used in the Lotus Notes client and separately, might allow local users to obtain sensitive information by leveraging the persistence of cleartext password strings within process memory.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
1.9 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:P/I:N/A:N
ibmCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 31%
VendorProductVersion
ibmlotus_sametime
8.5.1
ibmlotus_sametime
8.5.1.1
ibmlotus_sametime
8.5.1.2
ibmlotus_sametime
8.5.2
ibmlotus_sametime
8.5.2.1
ibmsametime
8.5.1
ibmsametime
8.5.1.1
ibmsametime
8.5.1.2
ibmsametime
8.5.2
ibmsametime
8.5.2.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg21635218
https://exchange.xforce.ibmcloud.com/vulnerabilities/82656
http://www-01.ibm.com/support/docview.wss?uid=swg21635218
https://exchange.xforce.ibmcloud.com/vulnerabilities/82656