Vulnerability Details CVE-2016-1450
Cisco WebEx Meetings Server 2.6 allows remote authenticated users to conduct command-injection attacks via vectors related to an upload's file type, aka Bug ID CSCuy92715.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.2%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 6.0
References
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160714-wms4
- http://www.securityfocus.com/bid/91779
- http://www.securitytracker.com/id/1036315
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160714-wms4
- http://www.securityfocus.com/bid/91779
- http://www.securitytracker.com/id/1036315
Products affected by CVE-2016-1450
-
cpe:2.3:a:cisco:webex_meetings_server:2.6.0
-
cpe:2.3:a:cisco:webex_meetings_server:2.6.1.39