CVE-2014-8034

Опубликовано: 15 янв. 2015

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Cisco WebEx Meetings Server 1.5 presents the same CAPTCHA challenge for each login attempt, which makes it easier for remote attackers to obtain access via a brute-force approach of guessing usernames, aka Bug ID CSCuj40321.

Ссылки

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-8034
Vendor Advisory
http://tools.cisco.com/security/center/viewAlert.x?alertId=36990
Vendor Advisory
http://www.securityfocus.com/bid/71978
http://www.securitytracker.com/id/1031543
https://exchange.xforce.ibmcloud.com/vulnerabilities/100552
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-8034
Vendor Advisory
http://tools.cisco.com/security/center/viewAlert.x?alertId=36990
Vendor Advisory
http://www.securityfocus.com/bid/71978
http://www.securitytracker.com/id/1031543
https://exchange.xforce.ibmcloud.com/vulnerabilities/100552

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cisco:webex_meetings_server:1.5:*:*:*:*:*:*:*

EPSS

Процентиль: 57%

0.00357

Низкий

5 Medium

CVSS2

Дефекты

CWE-255

Связанные уязвимости

GHSA-27fc-vfp8-wfj8

github

больше 3 лет назад