CVE-2015-4208

Currently unrated

Key Information:

Vendor: Cisco
Status: Webex Meeting Center
Vendor: CVE Published:; 24 June 2015

Summary

Cisco WebEx Meeting Center does not properly restrict the content of URLs in GET requests, which allows remote attackers to obtain sensitive information or conduct SQL injection attacks via vectors involving read access to a request, aka Bug ID CSCup88398.

References

http://tools.cisco.com/security/center/viewAlert.x?alertI...

vendor-advisoryx_refsource_CISCO

http://www.securityfocus.com/bid/75361

vdb-entryx_refsource_BID

http://www.securitytracker.com/id/1032705

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jun 24, 2015
Vulnerability Reserved
Jun 4, 2015