5

CVE-2014-3301

The ProfileAction controller in Cisco WebEx Meetings Server (CWMS) 1.5(.1.131) and earlier allows remote attackers to obtain sensitive information by reading stack traces in returned messages, aka Bug ID CSCuj81700.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
CiscoWebex Meetings Server Version <= 1.5\(.1.131\)
CiscoWebex Meetings Server Version1.5
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.85% 0.763
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:P/I:N/A:N
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

http://secunia.com/advisories/60573
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3301
Vendor Advisory
http://tools.cisco.com/security/center/viewAlert.x?alertId=35040
Vendor Advisory
http://www.securityfocus.com/bid/68894
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1030642
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/94895