Vulnerability Details CVE-2016-1446
SQL injection vulnerability in Cisco WebEx Meetings Server 2.6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCuy83200.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.7%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
References
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160714-wms
- http://www.securityfocus.com/bid/91786
- http://www.securitytracker.com/id/1036312
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160714-wms
- http://www.securityfocus.com/bid/91786
- http://www.securitytracker.com/id/1036312
Products affected by CVE-2016-1446
-
cpe:2.3:a:cisco:webex_meetings_server:2.6.0
-
cpe:2.3:a:cisco:webex_meetings_server:2.6.1.39