CVE-2015-4218

Опубликовано: 24 июн. 2015

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

The web-based user interface in Cisco Jabber through 9.6(3) and 9.7 through 9.7(5) on Windows allows remote attackers to obtain sensitive information via a crafted value in a GET request, aka Bug IDs CSCuu65622 and CSCuu70858.

Ссылки

http://tools.cisco.com/security/center/viewAlert.x?alertId=39494
Vendor Advisory
http://www.securityfocus.com/bid/75377
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1032711
Third Party Advisory
VDB Entry
http://tools.cisco.com/security/center/viewAlert.x?alertId=39494
Vendor Advisory
http://www.securityfocus.com/bid/75377
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1032711
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:cisco:jabber:9.6\(0\):*:*:*:*:windows:*:*

cpe:2.3:a:cisco:jabber:9.6\(1\):*:*:*:*:windows:*:*

cpe:2.3:a:cisco:jabber:9.6\(2\):*:*:*:*:windows:*:*

cpe:2.3:a:cisco:jabber:9.6\(3\):*:*:*:*:windows:*:*

cpe:2.3:a:cisco:jabber:9.7\(0\):*:*:*:*:windows:*:*

cpe:2.3:a:cisco:jabber:9.7\(1\):*:*:*:*:windows:*:*

cpe:2.3:a:cisco:jabber:9.7\(2\):*:*:*:*:windows:*:*

cpe:2.3:a:cisco:jabber:9.7\(3\):*:*:*:*:windows:*:*

cpe:2.3:a:cisco:jabber:9.7\(4\):*:*:*:*:windows:*:*

cpe:2.3:a:cisco:jabber:9.7\(5\):*:*:*:*:windows:*:*

EPSS

Процентиль: 62%

0.00428

Низкий

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-7c78-wvwc-9rw6

github

больше 3 лет назад