Vulnerability Details CVE-2015-0596
Cross-site request forgery (CSRF) vulnerability in Cisco WebEx Meetings Server 1.5(.1.131) and earlier allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuj67163.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.5%
CVSS Severity
CVSS v2 Score 6.8
References
- http://secunia.com/advisories/61797
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0596
- http://tools.cisco.com/security/center/viewAlert.x?alertId=37239
- http://www.securityfocus.com/bid/72371
- http://www.securitytracker.com/id/1031677
- https://exchange.xforce.ibmcloud.com/vulnerabilities/100665
- http://secunia.com/advisories/61797
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0596
- http://tools.cisco.com/security/center/viewAlert.x?alertId=37239
- http://www.securityfocus.com/bid/72371
- http://www.securitytracker.com/id/1031677
- https://exchange.xforce.ibmcloud.com/vulnerabilities/100665
Products affected by CVE-2015-0596
-
cpe:2.3:a:cisco:webex_meetings_server:-
-
cpe:2.3:a:cisco:webex_meetings_server:1.0
-
cpe:2.3:a:cisco:webex_meetings_server:1.1
-
cpe:2.3:a:cisco:webex_meetings_server:1.1_base
-
cpe:2.3:a:cisco:webex_meetings_server:1.5
-
cpe:2.3:a:cisco:webex_meetings_server:1.5(.1.131)
-
cpe:2.3:a:cisco:webex_meetings_server:1.5(.1.6)