Low severity2.7NVD Advisory· Published Mar 17, 2026· Updated Mar 31, 2026
CVE-2025-31966
CVE-2025-31966
Description
HCL Sametime is vulnerable to broken server-side validation. While the application performs client-side input checks, these are not enforced by the web server. An attacker can bypass these restrictions by sending manipulated HTTP requests directly to the server.
Affected products
2Patches
Vulnerability mechanics
References
1- support.hcl-software.com/csmnvdVendor Advisory
News mentions
0No linked articles in our index yet.