Webex Meetings Server@1.5 Security Vulnerabilities and Issues — Webex Meetings Server@1.5 CVE List

Lucene search

CiscoWebex Meetings Server1.5

5 matches found

CVE•added 2015/02/07 3:59 p.m.•45 views

CVE-2015-0589

The administrative web interface in Cisco WebEx Meetings Server 1.0 through 1.5 allows remote authenticated users to execute arbitrary OS commands with root privileges via unspecified fields, aka Bug ID CSCuj40460.

9CVSS7.5AI score0.00737EPSS

CVE•added 2015/01/15 10:59 p.m.•41 views

CVE-2014-8034

Cisco WebEx Meetings Server 1.5 presents the same CAPTCHA challenge for each login attempt, which makes it easier for remote attackers to obtain access via a brute-force approach of guessing usernames, aka Bug ID CSCuj40321.

5CVSS6.7AI score0.00357EPSS

CVE•added 2014/08/01 5:12 a.m.•40 views

CVE-2014-3302

user.php in Cisco WebEx Meetings Server 1.5(.1.131) and earlier does not properly implement the token timer for authenticated encryption, which allows remote attackers to obtain sensitive information via a crafted URL, aka Bug ID CSCuj81708.

5.8CVSS6.1AI score0.00302EPSS

CVE•added 2014/07/26 11:11 a.m.•37 views

CVE-2014-3301

The ProfileAction controller in Cisco WebEx Meetings Server (CWMS) 1.5(.1.131) and earlier allows remote attackers to obtain sensitive information by reading stack traces in returned messages, aka Bug ID CSCuj81700.

5CVSS6.4AI score0.00607EPSS

CVE•added 2014/07/26 11:11 a.m.•35 views

CVE-2014-3305

Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco WebEx Meetings Server 1.5(.1.131) and earlier allows remote attackers to hijack the authentication of unspecified victims via unknown vectors, aka Bug ID CSCuj81735.

6.8CVSS7.4AI score0.0019EPSS