Lucene search

[email protected]CVE-2014-8032

HistoryJan 09, 2015 - 2:59 a.m.

CVE-2014-8032

2015-01-0902:59:00

CWE-200

[email protected]

web.nvd.nist.gov

outlookaction

cisco

webex meetings

server

remote authenticated

sensitive information

encrypted-password

cve-2014-8032

nvd

6 Medium

AI Score

Confidence

Low

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

50.0%

JSON

The OutlookAction LI in Cisco WebEx Meetings Server allows remote authenticated users to obtain sensitive encrypted-password information via unspecified vectors, aka Bug IDs CSCuj40453 and CSCuj40449.

CPENameOperatorVersion
cisco:webex_meetings_servercisco webex meetings servereq-

CPE	Name	Operator	Version
cisco:webex_meetings_server	cisco webex meetings server	eq	-

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-8032

www.securityfocus.com/bid/71947

www.securitytracker.com/id/1031517

exchange.xforce.ibmcloud.com/vulnerabilities/100564

6 Medium

AI Score

Confidence

Low

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

50.0%

JSON

Related for CVE-2014-8032

cisco1 prion1 cvelist1