Vulnerability Details CVE-2015-0597
The Forgot Password feature in Cisco WebEx Meetings Server 1.5(.1.131) and earlier allows remote attackers to enumerate administrative accounts via crafted packets, aka Bug IDs CSCuj67166 and CSCuj67159.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 55.4%
CVSS Severity
CVSS v2 Score 5.0
References
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0597
- http://tools.cisco.com/security/center/viewAlert.x?alertId=37240
- http://www.securityfocus.com/bid/72373
- http://www.securitytracker.com/id/1031678
- https://exchange.xforce.ibmcloud.com/vulnerabilities/100658
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0597
- http://tools.cisco.com/security/center/viewAlert.x?alertId=37240
- http://www.securityfocus.com/bid/72373
- http://www.securitytracker.com/id/1031678
- https://exchange.xforce.ibmcloud.com/vulnerabilities/100658
Products affected by CVE-2015-0597
-
cpe:2.3:a:cisco:webex_meetings_server:-
-
cpe:2.3:a:cisco:webex_meetings_server:1.0
-
cpe:2.3:a:cisco:webex_meetings_server:1.1
-
cpe:2.3:a:cisco:webex_meetings_server:1.1_base
-
cpe:2.3:a:cisco:webex_meetings_server:1.5
-
cpe:2.3:a:cisco:webex_meetings_server:1.5(.1.131)
-
cpe:2.3:a:cisco:webex_meetings_server:1.5(.1.6)