Vulnerability Details CVE-2015-0589
The administrative web interface in Cisco WebEx Meetings Server 1.0 through 1.5 allows remote authenticated users to execute arbitrary OS commands with root privileges via unspecified fields, aka Bug ID CSCuj40460.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.6%
CVSS Severity
CVSS v2 Score 9.0
References
- http://secunia.com/advisories/62799
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150204-wbx
- http://www.securityfocus.com/bid/72493
- http://www.securitytracker.com/id/1031692
- https://exchange.xforce.ibmcloud.com/vulnerabilities/100719
- http://secunia.com/advisories/62799
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150204-wbx
- http://www.securityfocus.com/bid/72493
- http://www.securitytracker.com/id/1031692
- https://exchange.xforce.ibmcloud.com/vulnerabilities/100719
Products affected by CVE-2015-0589
-
cpe:2.3:a:cisco:webex_meetings_server:1.0
-
cpe:2.3:a:cisco:webex_meetings_server:1.1
-
cpe:2.3:a:cisco:webex_meetings_server:1.5