Lucene search
CiscoCVE-2013-3448HistoryAug 02, 2013 - 12:10 p.m.
CVE-2013-3448
2013-08-0212:10:40
CWE-264
cisco
web.nvd.nist.gov
32
cisco
webex
meetings server
bypass
access restrictions
account deactivation
cve-2013-3448
nvd
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
AI Score
6.4
Confidence
Low
EPSS
0.001
Percentile
45.3%
Cisco WebEx Meetings Server does not check whether a user account is active, which allows remote authenticated users to bypass intended access restrictions by performing meeting operations after account deactivation, aka Bug ID CSCuh33315.
Affected configurations
Node
ciscowebex_meetings_serverMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | webex_meetings_server | - | cpe:/a:cisco:webex_meetings_server:-::: |
Related
nvd
nvd
CVE-2013-3448
2013-08-02 12:10:40
prion
prion
Command injection
2013-08-02 12:10:00
seebug
seebug
Cisco WebEx Meetings Server远程身份验证绕过漏洞(CVE-2013-3448)
2013-08-05 00:00:00
cvelist
cvelist
CVE-2013-3448
2013-08-01 16:00:00
cisco
cisco
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
AI Score
6.4
Confidence
Low
EPSS
0.001
Percentile
45.3%
Related for CVE-2013-3448