How severe is CVE-2016-1389?

High severity. CVSS v3 base score is 7.4 out of 10.

Vulnerability in Cisco Webex_meetings_server

CVE-2016-1389

Open redirect vulnerability in Cisco WebEx Meetings Server (CWMS) 2.6 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors, aka Bug ID CSCuy44695.

EPSS: 0.002 (45.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.4 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N.

Affected products

Cisco Webex_meetings_server — versions 2.6.0
N/a — versions n/a

References

20160428 Cisco WebEx Meetings Server Open Redirect Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)
1035703 (vdb-entry, x_refsource_SECTRACK)

Frequently asked questions

What is CVE-2016-1389?: CVE-2016-1389 is a high-severity vulnerability in Cisco Webex_meetings_server. CVSS score: 7.4/10. Published 2016-04-28.
How severe is CVE-2016-1389?: High severity. CVSS v3 base score is 7.4 out of 10.