Lucene search

CiscoCVE-2013-6970

HistoryDec 14, 2013 - 10:55 p.m.

CVE-2013-6970

2013-12-1422:55:14

CWE-200

cisco

web.nvd.nist.gov

cisco

webex

meeting center

remote attackers

sensitive information

bug id cscul35928

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.4

Confidence

Low

EPSS

0.003

Percentile

70.6%

JSON

Cisco WebEx Meeting Center allows remote attackers to obtain sensitive information by reading verbose error messages within server responses, aka Bug ID CSCul35928.

Affected configurations

Nvd

Node

ciscowebex_meeting_centerMatch-

VendorProductVersionCPE
ciscowebex_meeting_center-cpe:2.3:a:cisco:webex_meeting_center:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	webex_meeting_center	-	cpe:2.3:a:cisco:webex_meeting_center:-:::::::*

References

osvdb.org/101002

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6970

www.securityfocus.com/bid/64306

exchange.xforce.ibmcloud.com/vulnerabilities/89708

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.4

Confidence

Low

EPSS

0.003

Percentile

70.6%

JSON

Related for CVE-2013-6970