exploitDog

CVE-2014-0708

Опубликовано: 21 мар. 2014

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

WebEx Meeting Center in Cisco WebEx Business Suite does not properly compose URLs for HTTP GET requests, which allows remote attackers to obtain sensitive information by reading (1) web-server access logs, (2) web-server Referer logs, or (3) a browser's history, aka Bug ID CSCul98272.

Ссылки

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0708
Vendor Advisory
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0708
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cisco:webex_meeting_center:*:*:*:*:*:*:*:*

EPSS

Процентиль: 46%

0.0023

Низкий

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-fxfv-vf9w-wjv3

github

больше 3 лет назад

WebEx Meeting Center in Cisco WebEx Business Suite does not properly compose URLs for HTTP GET requests, which allows remote attackers to obtain sensitive information by reading (1) web-server access logs, (2) web-server Referer logs, or (3) a browser's history, aka Bug ID CSCul98272.

EPSS

Процентиль: 46%

0.0023

Низкий

5 Medium

CVSS2

Дефекты

CWE-200