CVE-2014-0682

Опубликовано: 29 янв. 2014

Источник: nvd

CVSS2: 4.9

EPSS Низкий

Описание

Cisco WebEx Meetings Server allows remote authenticated users to bypass authorization checks and (1) join arbitrary meetings, or (2) terminate a meeting without having a host role, via a crafted URL, aka Bug ID CSCuj42346.

Ссылки

http://osvdb.org/102590
http://secunia.com/advisories/56668
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0682
Vendor Advisory
http://tools.cisco.com/security/center/viewAlert.x?alertId=32618
http://www.securityfocus.com/bid/65198
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1029700
http://osvdb.org/102590
http://secunia.com/advisories/56668
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0682
Vendor Advisory
http://tools.cisco.com/security/center/viewAlert.x?alertId=32618
http://www.securityfocus.com/bid/65198
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1029700

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cisco:webex_meetings_server:-:*:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.00814

Низкий

4.9 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-4f59-hmr5-3f2r

github

больше 3 лет назад