Information disclosure in Cisco Webex_meeting_center

CVE-2015-0583

Cisco WebEx Meeting Center does not properly restrict the content of URLs, which allows remote attackers to obtain sensitive information via vectors related to file: URIs, aka Bug ID CSCus18281.

Vulnerability class: Information Disclosure

EPSS: 0.003 (49.7th percentile) — read the EPSS interpretation.

Affected products

Cisco Webex_meeting_center
N/a — versions n/a

Weakness classification (CWE)

CWE-200 — Information Disclosure

References

72012 (vdb-entry, x_refsource_BID)
cisco-webex-cve20150583-info-disc(100565) (vdb-entry, x_refsource_XF)
20150112 Cisco WebEx Meetings Server Information Disclosure Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)