CVE-2009-0614

Опубликовано: 26 фев. 2009

Источник: nvd

CVSS2: 9

EPSS Низкий

Описание

Unspecified vulnerability in the Web Server in Cisco Unified MeetingPlace Web Conferencing 6.0 before 6.0(517.0) (aka 6.0 MR4) and 7.0 before 7.0(2) (aka 7.0 MR1) allows remote attackers to bypass authentication and obtain administrative access via a crafted URL.

Ссылки

http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc86.shtml
Vendor Advisory
http://www.securityfocus.com/bid/33901
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/48888
VDB Entry
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc86.shtml
Vendor Advisory
http://www.securityfocus.com/bid/33901
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/48888
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:cisco:unified_meetingplace_web_conferencing:*:*:*:*:*:*:*:*

Версия от 6.0\(171\) (включая) до 6.0\(517.0\) (исключая)

cpe:2.3:a:cisco:unified_meetingplace_web_conferencing:*:*:*:*:*:*:*:*

Версия от 7.0\(1\) (включая) до 7.0\(2\) (исключая)

EPSS

Процентиль: 67%

0.0053

Низкий

9 Critical

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-g7r6-hv8w-2mjr

github

почти 4 года назад