Lucene search

[email protected]CVE-2013-6960

HistoryDec 14, 2013 - 10:55 p.m.

CVE-2013-6960

2013-12-1422:55:14

CWE-79

[email protected]

web.nvd.nist.gov

cve-2013-6960

cisco

webex meeting center

xss

remote attackers

web script

html

crafted url

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.8%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in Cisco WebEx Meeting Center allow remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCul36248.

Affected configurations

NVD

Node

ciscowebex_meeting_centerMatch-

CPENameOperatorVersion
cisco:webex_meeting_centercisco webex meeting centereq-

CPE	Name	Operator	Version
cisco:webex_meeting_center	cisco webex meeting center	eq	-

References

osvdb.org/100904

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6960

tools.cisco.com/security/center/viewAlert.x?alertId=32152

www.securityfocus.com/bid/64273

www.securitytracker.com/id/1029494

exchange.xforce.ibmcloud.com/vulnerabilities/89693

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.8%

JSON

Related for CVE-2013-6960

cisco1 prion1 nvd1 cvelist1 seebug1