CVE-2014-0691

7.3HIGH

Key Information:

Vendor: Cisco
Status: Webex Meetings Server
Vendor: CVE Published:; 24 October 2017

Summary

Cisco WebEx Meetings Server before 1.1 uses meeting IDs with insufficient entropy, which makes it easier for remote attackers to bypass authentication and join arbitrary meetings without a password, aka Bug ID CSCuc79643.

References

https://www.cisco.com/c/en/us/td/docs/collaboration/CWMS/...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 24, 2017
Vulnerability Reserved
Jan 2, 2014