meetinginfo.do in Cisco WebEx Event Center, WebEx Meeting Center, WebEx Sales Center, WebEx Training Center, WebEx Meetings Server 1.5(.1.131) and earlier, and WebEx Business Suite (WBS) 27 before 27.32.31.16, 28 before 28.12.13.18, and 29 before 29.5.1.12 allows remote attackers to obtain sensitive meeting information by leveraging knowledge of a meeting identifier, aka Bug IDs CSCuo68624 and CSCue46738.
References
Link | Resource |
---|---|
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2199 | Vendor Advisory |
http://tools.cisco.com/security/center/viewAlert.x?alertId=34252 | Vendor Advisory |
http://www.securitytracker.com/id/1030251 | Third Party Advisory VDB Entry |
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2199 | Vendor Advisory |
http://tools.cisco.com/security/center/viewAlert.x?alertId=34252 | Vendor Advisory |
http://www.securitytracker.com/id/1030251 | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:05
Type | Values Removed | Values Added |
---|---|---|
References | () http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2199 - Vendor Advisory | |
References | () http://tools.cisco.com/security/center/viewAlert.x?alertId=34252 - Vendor Advisory | |
References | () http://www.securitytracker.com/id/1030251 - Third Party Advisory, VDB Entry |
Information
Published : 2014-05-20 11:13
Updated : 2024-11-21 02:05
NVD link : CVE-2014-2199
Mitre link : CVE-2014-2199
CVE.ORG link : CVE-2014-2199
JSON object : View
Products Affected
cisco
- webex_business_suite
- webex_training_center
- webex_meeting_center
- webex_sales_center
- webex_meetings_server
- webex_event_center
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor