Vulnerability in Cisco Webex_training_center
CVE-2013-6965
The registration component in Cisco WebEx Training Center provides the training-session URL before e-mail confirmation is completed, which allows remote attackers to bypass intended access restrictions and join an audio conference by enter…
EPSS: 0.005 (66.4th percentile) — read the EPSS interpretation.
Affected products
- Cisco Webex_training_center
- N/a — versions n/a
Weakness classification (CWE)
References
- psirt@cisco.com (x_refsource_CONFIRM, Vendor Advisory)
- 1029492 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_SECTRACK)
- 100911 (x_refsource_OSVDB, vdb-entry)
- 64281 (vdb-entry, x_refsource_BID)
- 20131212 Cisco WebEx Training Center Bypass Email Verification to Join Audio Conference Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)
- cisco-webex-cve20136965-info-disc(89691) (vdb-entry, x_refsource_XF)