Published: 14/12/2013 Updated: 29/11/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Cisco WebEx Training Center allows remote malicious users to discover session numbers, and bypass host approval for audio-conference attendance, by reading HTML source code, aka Bug ID CSCul57126.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco webex training center -

A vulnerability in Cisco WebEx Training Center could allow an unauthenticated, remote attacker to view the session number for trainings that require host approval before the host approves the attacker as an attendee The vulnerability is due to inappropriate disclosure of sensitive information in server replies to clients An attacker could exploi ...

CWE-200 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6972 http://tools.cisco.com/security/center/viewAlert.x?alertId=32145 http://www.securitytracker.com/id/1029492 http://www.securityfocus.com/bid/64282 http://osvdb.org/100914 https://exchange.xforce.ibmcloud.com/vulnerabilities/89652 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20131213-CVE-2013-6972

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-6972

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect