exploitDog

CVE-2013-1245

Опубликовано: 16 мая 2013

Источник: nvd

CVSS2: 4

EPSS Низкий

Описание

The user-management page in Cisco WebEx Social relies on client-side validation of values in the Screen Name, First Name, Middle Name, Last Name, Email Address, and Job Title fields, which allows remote authenticated users to bypass intended access restrictions via crafted requests, aka Bug ID CSCue67190.

Ссылки

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1245
Vendor Advisory
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1245
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cisco:webex_social:-:*:*:*:*:*:*:*

EPSS

Процентиль: 40%

0.00183

Низкий

4 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-8crf-9q8h-hf3h

github

больше 3 лет назад

The user-management page in Cisco WebEx Social relies on client-side validation of values in the Screen Name, First Name, Middle Name, Last Name, Email Address, and Job Title fields, which allows remote authenticated users to bypass intended access restrictions via crafted requests, aka Bug ID CSCue67190.

EPSS

Процентиль: 40%

0.00183

Низкий

4 Medium

CVSS2

Дефекты

CWE-20