Access Bypass Vulnerability in Cisco Unified MeetingPlace Web Conferencing
CVE-2013-3438

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Meetingplace Web Conferencing
Vendor: CVE Published:; 24 July 2013

What is CVE-2013-3438?

The web framework in Cisco Unified MeetingPlace Web Conferencing contains a vulnerability that allows remote attackers to bypass access restrictions. By sending specially crafted parameters, an attacker could potentially read sensitive information from specified web pages. This vulnerability highlights the need for organizations to implement stringent access controls and regular security updates to guard against unauthorized data access.

References

http://osvdb.org/95583

vdb-entryx_refsource_OSVDB

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://tools.cisco.com/security/center/viewAlert.x?alertI...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 24, 2013
Vulnerability Reserved
May 6, 2013