Lucene search

[email protected]NVD:CVE-2015-0597

HistoryFeb 02, 2015 - 1:59 a.m.

CVE-2015-0597

2015-02-0201:59:08

CWE-20

CWE-200

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.7

Confidence

Low

EPSS

0.002

Percentile

61.2%

JSON

The Forgot Password feature in Cisco WebEx Meetings Server 1.5(.1.131) and earlier allows remote attackers to enumerate administrative accounts via crafted packets, aka Bug IDs CSCuj67166 and CSCuj67159.

Affected configurations

Nvd

Node

ciscowebex_meetings_serverRange≤1.5\(.1.131\)

VendorProductVersionCPE
ciscowebex_meetings_server*cpe:2.3:a:cisco:webex_meetings_server:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	webex_meetings_server	*	cpe:2.3:a:cisco:webex_meetings_server::::::::

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0597

tools.cisco.com/security/center/viewAlert.x?alertId=37240

www.securityfocus.com/bid/72373

www.securitytracker.com/id/1031678

exchange.xforce.ibmcloud.com/vulnerabilities/100658

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.7

Confidence

Low

EPSS

0.002

Percentile

61.2%

JSON

Related for NVD:CVE-2015-0597

prion1 cvelist1 cve1 cisco1