Lucene search
CiscoCVE-2013-6968HistoryDec 14, 2013 - 10:55 p.m.
CVE-2013-6968
2013-12-1422:55:14
CWE-200
cisco
web.nvd.nist.gov
24
cisco
webex
training center
vulnerability
attendee enumeration
remote attackers
cve-2013-6968
nvd
bug id cscul36003
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.8
Confidence
Low
EPSS
0.003
Percentile
65.9%
Cisco WebEx Training Center provides different error messages for registration attempts depending on whether the e-mail address exists, which allows remote attackers to enumerate attendees via a series of requests, aka Bug ID CSCul36003.
Affected configurations
Node
ciscowebex_training_centerMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | webex_training_center | - | cpe:2.3:a:cisco:webex_training_center:-:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2013-6968
2013-12-14 22:00:00
prion
prion
Design/Logic Flaw
2013-12-14 22:55:00
cisco
cisco
Cisco WebEx Training Center Registered Attendee Email Enumeration Vulnerability
2013-12-13 15:08:00
nvd
nvd
CVE-2013-6968
2013-12-14 22:55:14
seebug
seebug
Cisco WebEx Training Center emailζδΈΎζΌζ΄
2013-12-18 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.8
Confidence
Low
EPSS
0.003
Percentile
65.9%
Related for CVE-2013-6968