Lucene search
HistoryDec 14, 2013 - 10:55 p.m.
CVE-2013-6968
cisco
webex
training center
vulnerability
attendee enumeration
remote attackers
cve-2013-6968
nvd
bug id cscul36003
6.9 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
65.7%
Cisco WebEx Training Center provides different error messages for registration attempts depending on whether the e-mail address exists, which allows remote attackers to enumerate attendees via a series of requests, aka Bug ID CSCul36003.
| CPE | Name | Operator | Version |
|---|---|---|---|
| cisco:webex_training_center | cisco webex training center | eq | - |
Related
cvelist
cvelist
CVE-2013-6968
2013-12-14 22:00:00
seebug
seebug
Cisco WebEx Training Center emailζδΈΎζΌζ΄
2013-12-18 00:00:00
cisco
cisco
Cisco WebEx Training Center Registered Attendee Email Enumeration Vulnerability
2013-12-13 15:08:00
prion
prion
Design/Logic Flaw
2013-12-14 22:55:00
6.9 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
65.7%
Related for CVE-2013-6968