CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
50.4%
The web-based user interface in Cisco Jabber through 9.6(3) and 9.7 through 9.7(5) on Windows allows remote attackers to obtain sensitive information via a crafted value in a GET request, aka Bug IDs CSCuu65622 and CSCuu70858.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | jabber | 9.6(0) | cpe:2.3:a:cisco:jabber:9.6\(0\):*:*:*:*:windows:*:* |
cisco | jabber | 9.6(1) | cpe:2.3:a:cisco:jabber:9.6\(1\):*:*:*:*:windows:*:* |
cisco | jabber | 9.6(2) | cpe:2.3:a:cisco:jabber:9.6\(2\):*:*:*:*:windows:*:* |
cisco | jabber | 9.6(3) | cpe:2.3:a:cisco:jabber:9.6\(3\):*:*:*:*:windows:*:* |
cisco | jabber | 9.7(0) | cpe:2.3:a:cisco:jabber:9.7\(0\):*:*:*:*:windows:*:* |
cisco | jabber | 9.7(1) | cpe:2.3:a:cisco:jabber:9.7\(1\):*:*:*:*:windows:*:* |
cisco | jabber | 9.7(2) | cpe:2.3:a:cisco:jabber:9.7\(2\):*:*:*:*:windows:*:* |
cisco | jabber | 9.7(3) | cpe:2.3:a:cisco:jabber:9.7\(3\):*:*:*:*:windows:*:* |
cisco | jabber | 9.7(4) | cpe:2.3:a:cisco:jabber:9.7\(4\):*:*:*:*:windows:*:* |
cisco | jabber | 9.7(5) | cpe:2.3:a:cisco:jabber:9.7\(5\):*:*:*:*:windows:*:* |