PT-2026-25894 · Hcl · Hcl Sametime
Published
2026-03-17
·
Updated
2026-03-17
·
CVE-2025-31966
CVSS v3.1
2.7
Low
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
HCL Sametime (affected versions not specified)
Description
HCL Sametime is susceptible to a server-side validation flaw. The application implements client-side input validation, but these checks are not replicated on the web server. This allows an attacker to circumvent these restrictions by sending crafted HTTP requests directly to the server.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Hcl Sametime