Lucene search

[email protected]CVE-2015-0596

HistoryFeb 02, 2015 - 1:59 a.m.

CVE-2015-0596

2015-02-0201:59:00

CWE-352

[email protected]

web.nvd.nist.gov

cve-2015-0596

csrf

vulnerability

cisco webex

meetings server

remote attackers

authentication

7.4 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

72.8%

JSON

Cross-site request forgery (CSRF) vulnerability in Cisco WebEx Meetings Server 1.5(.1.131) and earlier allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuj67163.

CPENameOperatorVersion
cisco:webex_meetings_servercisco webex meetings serverle1.5\(.1.131\)

CPE	Name	Operator	Version
cisco:webex_meetings_server	cisco webex meetings server	le	1.5\(.1.131\)

References

secunia.com/advisories/61797

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0596

tools.cisco.com/security/center/viewAlert.x?alertId=37239

www.securityfocus.com/bid/72371

www.securitytracker.com/id/1031677

exchange.xforce.ibmcloud.com/vulnerabilities/100665

7.4 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

72.8%

JSON

Related for CVE-2015-0596

cvelist1 cisco1 prion1