Lucene search
CiscoCVE-2014-3304HistoryJul 28, 2014 - 5:55 p.m.
CVE-2014-3304
2014-07-2817:55:07
CWE-200
cisco
web.nvd.nist.gov
25
outlookaction class
cisco webex meetings server
remote attackers
enumeration
user accounts
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.8
Confidence
Low
EPSS
0.002
Percentile
53.4%
The OutlookAction Class in Cisco WebEx Meetings Server allows remote attackers to enumerate user accounts by entering crafted URLs and examining the returned messages, aka Bug ID CSCuj81722.
Affected configurations
Node
ciscowebex_meetings_serverMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | webex_meetings_server | - | cpe:2.3:a:cisco:webex_meetings_server:-:*:*:*:*:*:*:* |
Related
prion
prion
Design/Logic Flaw
2014-07-28 17:55:00
cvelist
cvelist
CVE-2014-3304
2014-07-28 17:00:00
cisco
cisco
Cisco WebEx Meetings Server OutlookAction Class Vulnerability
2014-07-28 20:00:53
nvd
nvd
CVE-2014-3304
2014-07-28 17:55:07
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.8
Confidence
Low
EPSS
0.002
Percentile
53.4%
Related for CVE-2014-3304