Vulnerability Details CVE-2014-0682
Cisco WebEx Meetings Server allows remote authenticated users to bypass authorization checks and (1) join arbitrary meetings, or (2) terminate a meeting without having a host role, via a crafted URL, aka Bug ID CSCuj42346.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.3%
CVSS Severity
CVSS v2 Score 4.9
References
- http://osvdb.org/102590
- http://secunia.com/advisories/56668
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0682
- http://tools.cisco.com/security/center/viewAlert.x?alertId=32618
- http://www.securityfocus.com/bid/65198
- http://www.securitytracker.com/id/1029700
- http://osvdb.org/102590
- http://secunia.com/advisories/56668
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0682
- http://tools.cisco.com/security/center/viewAlert.x?alertId=32618
- http://www.securityfocus.com/bid/65198
- http://www.securitytracker.com/id/1029700
Products affected by CVE-2014-0682
-
cpe:2.3:a:cisco:webex_meetings_server:-