meetinginfo.do in Cisco WebEx Event Center, WebEx Meeting Center, WebEx Sales Center, WebEx Training Center, WebEx Meetings Server 1.5(.1.131) and earlier, and WebEx Business Suite (WBS) 27 before 27.32.31.16, 28 before 28.12.13.18, and 29 before 29.5.1.12 allows remote attackers to obtain sensitive meeting information by leveraging knowledge of a meeting identifier, aka Bug IDs CSCuo68624 and CSCue46738.
References
Link | Resource |
---|---|
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2199 | Vendor Advisory |
http://tools.cisco.com/security/center/viewAlert.x?alertId=34252 | Vendor Advisory |
http://www.securitytracker.com/id/1030251 | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2014-05-20 11:13
Updated : 2024-02-28 12:20
NVD link : CVE-2014-2199
Mitre link : CVE-2014-2199
CVE.ORG link : CVE-2014-2199
JSON object : View
Products Affected
cisco
- webex_event_center
- webex_sales_center
- webex_meetings_server
- webex_meeting_center
- webex_business_suite
- webex_training_center
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor