Sign-up

ID

VAR-201506-0300


CVE

CVE-2015-4212


TITLE

Cisco WebEx Meeting Center Vulnerability in which important information is obtained

Trust: 0.8

sources: JVNDB: JVNDB-2015-003268

DESCRIPTION

Cisco WebEx Meeting Center allows remote attackers to obtain sensitive information via unspecified vectors, as demonstrated by discovering credentials, aka Bug ID CSCut17466. Cisco WebEx Meeting Center Contains a vulnerability in which important information is obtained. Vendors have confirmed this vulnerability Bug ID CSCut17466 It is released as.Important information may be obtained by a third party. An attacker can exploit this issue to gain access to sensitive information that may aid in further attacks. This issue is being tracked by Cisco Bug Id CSCut17466. The product invites others to join the meeting via email or instant messaging (IM), enabling online product demonstrations, information sharing, and more

Trust: 1.98

sources: NVD: CVE-2015-4212 // JVNDB: JVNDB-2015-003268 // BID: 75381 // VULHUB: VHN-82173

AFFECTED PRODUCTS

vendor:ciscomodel:webex meeting centerscope:eqversion: -

Trust: 1.6

vendor:ciscomodel:webex meeting centerscope: - version: -

Trust: 0.8

vendor:ciscomodel:webex meeting centerscope:eqversion:0

Trust: 0.3

sources: BID: 75381 // JVNDB: JVNDB-2015-003268 // CNNVD: CNNVD-201506-486 // NVD: CVE-2015-4212

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2015-4212
value: MEDIUM

Trust: 1.0

NVD: CVE-2015-4212
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201506-486
value: MEDIUM

Trust: 0.6

VULHUB: VHN-82173
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2015-4212
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-82173
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-82173 // JVNDB: JVNDB-2015-003268 // CNNVD: CNNVD-201506-486 // NVD: CVE-2015-4212

PROBLEMTYPE DATA

problemtype:CWE-200

Trust: 1.9

sources: VULHUB: VHN-82173 // JVNDB: JVNDB-2015-003268 // NVD: CVE-2015-4212

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201506-486

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-201506-486

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2015-003268

PATCH
title:39467url:http://tools.cisco.com/security/center/viewAlert.x?alertId=39467
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2015-003268

EXTERNAL IDS
db:NVDid:CVE-2015-4212
Trust: 2.8
db:BIDid:75381
Trust: 1.4
db:SECTRACKid:1032705
Trust: 1.1
db:JVNDBid:JVNDB-2015-003268
Trust: 0.8
db:CNNVDid:CNNVD-201506-486
Trust: 0.7
db:VULHUBid:VHN-82173
Trust: 0.1
sources:
            
            
            VULHUB: VHN-82173 // 
            
            
            
            BID: 75381 // 
            
            
            
            JVNDB: JVNDB-2015-003268 // 
            
            
            
            CNNVD: CNNVD-201506-486 // 
            
            
            
            NVD: CVE-2015-4212

REFERENCES
url:http://tools.cisco.com/security/center/viewalert.x?alertid=39467
Trust: 2.0
url:http://www.securityfocus.com/bid/75381
Trust: 1.1
url:http://www.securitytracker.com/id/1032705
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-4212
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-4212
Trust: 0.8
url:http://www.cisco.com/
Trust: 0.3
url:https://meetmenow.webex.com/
Trust: 0.3
sources:
            
            
            VULHUB: VHN-82173 // 
            
            
            
            BID: 75381 // 
            
            
            
            JVNDB: JVNDB-2015-003268 // 
            
            
            
            CNNVD: CNNVD-201506-486 // 
            
            
            
            NVD: CVE-2015-4212

CREDITS
Cisco
Trust: 0.3
sources:
            
            
            BID: 75381

SOURCES
db:VULHUBid:VHN-82173
db:BIDid:75381
db:JVNDBid:JVNDB-2015-003268
db:CNNVDid:CNNVD-201506-486
db:NVDid:CVE-2015-4212

LAST UPDATE DATE
2024-11-23T22:01:44.812000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-82173date:2016-12-28T00:00:00
db:BIDid:75381date:2015-06-23T00:00:00
db:JVNDBid:JVNDB-2015-003268date:2015-06-25T00:00:00
db:CNNVDid:CNNVD-201506-486date:2015-06-25T00:00:00
db:NVDid:CVE-2015-4212date:2024-11-21T02:30:38.660

SOURCES RELEASE DATE
db:VULHUBid:VHN-82173date:2015-06-24T00:00:00
db:BIDid:75381date:2015-06-23T00:00:00
db:JVNDBid:JVNDB-2015-003268date:2015-06-25T00:00:00
db:CNNVDid:CNNVD-201506-486date:2015-06-25T00:00:00
db:NVDid:CVE-2015-4212date:2015-06-24T10:59:08.087