Improper URL Handling in Cisco WebEx Meeting Center
CVE-2015-4208

Currently unrated

Key Information:

Vendor: Cisco
Status: Webex Meeting Center
Vendor: CVE Published:; 24 June 2015

Summary

Cisco WebEx Meeting Center has a vulnerability related to improper restrictions on the content of URLs in GET requests. This shortcoming allows remote attackers to exploit the system, leading to the potential exposure of sensitive information. Moreover, it opens the door for SQL injection attacks through manipulated request vectors, ultimately affecting the integrity and confidentiality of data handled by the application. It's crucial for users of WebEx Meeting Center to apply necessary security patches and stay updated to mitigate the risks associated with this vulnerability.

References

http://tools.cisco.com/security/center/viewAlert.x?alertI...

vendor-advisoryx_refsource_CISCO

http://www.securityfocus.com/bid/75361

vdb-entryx_refsource_BID

http://www.securitytracker.com/id/1032705

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jun 24, 2015
Vulnerability Reserved
Jun 4, 2015