Lucene search
CiscoCVE-2014-3310HistoryJul 10, 2014 - 11:06 a.m.
CVE-2014-3310
2014-07-1011:06:27
CWE-20
cisco
web.nvd.nist.gov
24
cisco
webex meetings server
webex meeting center
cve-2014-3310
file transfer
remote attack
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.8
Confidence
Low
EPSS
0.003
Percentile
70.6%
The File Transfer feature in WebEx Meetings Client in Cisco WebEx Meetings Server and WebEx Meeting Center does not verify that a requested file was an offered file, which allows remote attackers to read arbitrary files via a modified request, aka Bug IDs CSCup62442 and CSCup58463.
Affected configurations
Node
ciscowebex_meeting_centerMatch-
ORciscowebex_meetings_serverMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | webex_meeting_center | - | cpe:2.3:a:cisco:webex_meeting_center:-:*:*:*:*:*:*:* |
| cisco | webex_meetings_server | - | cpe:2.3:a:cisco:webex_meetings_server:-:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2014-3310
2014-07-10 10:00:00
nvd
nvd
CVE-2014-3310
2014-07-10 11:06:27
cisco
cisco
Cisco WebEx Meetings Client Arbitrary File Download Vulnerability
2014-07-10 15:29:11
prion
prion
Buffer overflow
2014-07-10 11:06:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.8
Confidence
Low
EPSS
0.003
Percentile
70.6%
Related for CVE-2014-3310