Information disclosure in Cisco Webex_meeting_center

CVE-2015-0590

Cisco WebEx Meeting Center allows remote attackers to activate disabled meeting attributes, and consequently obtain sensitive information, by providing crafted parameters during a meeting-join action, aka Bug ID CSCuo34165.

Vulnerability class: Information Disclosure

EPSS: 0.003 (49.7th percentile) — read the EPSS interpretation.

Affected products

Cisco Webex_meeting_center
N/a — versions n/a

Weakness classification (CWE)

CWE-200 — Information Disclosure

References

20150115 Cisco Hosted WebEx Meeting Center Information Disclosure (x_refsource_CISCO, vendor-advisory, Vendor Advisory)
1031558 (vdb-entry, x_refsource_SECTRACK)
cisco-webexmc-cve20150590-info-disc(100576) (vdb-entry, x_refsource_XF)