CVE-2013-0534

The Connect client in IBM Sametime 8.5.1, 8.5.1.1, 8.5.1.2, 8.5.2, and 8.5.2.1, as used in the Lotus Notes client and separately, might allow local users to obtain sensitive information by leveraging the persistence of cleartext password strings within process memory.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
1.9 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
ibmlotus_sametime
8.5.1
ibmlotus_sametime
8.5.1.1
ibmlotus_sametime
8.5.1.2
ibmlotus_sametime
8.5.2
ibmlotus_sametime
8.5.2.1
ibmsametime
8.5.1
ibmsametime
8.5.1.1
ibmsametime
8.5.1.2
ibmsametime
8.5.2
ibmsametime
8.5.2.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg21635218
https://exchange.xforce.ibmcloud.com/vulnerabilities/82656
http://www-01.ibm.com/support/docview.wss?uid=swg21635218
https://exchange.xforce.ibmcloud.com/vulnerabilities/82656