CVE-2025-31966 — HCL Sametime is vulnerable to broken server-side validation. While the application performs client-side input checks, these are not enforced by the web server. An attacker can bypass these restriction — CVE Database · The Intelligence Room