Vulnerability Details CVE-2016-6447
A vulnerability in Cisco Meeting Server and Meeting App could allow an unauthenticated, remote attacker to execute arbitrary code on an affected system. This vulnerability affects the following products: Cisco Meeting Server releases prior to 2.0.1, Acano Server releases prior to 1.8.16 and prior to 1.9.3, Cisco Meeting App releases prior to 1.9.8, Acano Meeting Apps releases prior to 1.8.35. More Information: CSCva75942 CSCvb67878. Known Affected Releases: 1.81.92.0.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.061
EPSS Ranking 90.4%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- http://www.securityfocus.com/bid/94073
- http://www.securitytracker.com/id/1037180
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161102-cms
- http://www.securityfocus.com/bid/94073
- http://www.securitytracker.com/id/1037180
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161102-cms
Products affected by CVE-2016-6447
-
cpe:2.3:a:cisco:meeting_app:1.8.0
-
cpe:2.3:a:cisco:meeting_app:1.9.0
-
cpe:2.3:a:cisco:meeting_server:1.8_base
-
cpe:2.3:a:cisco:meeting_server:1.9.0
-
cpe:2.3:a:cisco:meeting_server:2.0.0