Cisco » Webex Training Center : Security Vulnerabilities, CVEs, Published In 2013 (Information Leak)

CVE-2013-6973

Cisco WebEx Training Center allows remote attackers to discover registration IDs via a crafted URL, aka Bug ID CSCul57121.
Max CVSS
4.3
EPSS Score
0.35%
Published
2013-12-14
Updated
2017-11-29

CVE-2013-6972

Cisco WebEx Training Center allows remote attackers to discover session numbers, and bypass host approval for audio-conference attendance, by reading HTML source code, aka Bug ID CSCul57126.
Max CVSS
5.0
EPSS Score
0.29%
Published
2013-12-14
Updated
2017-11-29

CVE-2013-6968

Cisco WebEx Training Center provides different error messages for registration attempts depending on whether the e-mail address exists, which allows remote attackers to enumerate attendees via a series of requests, aka Bug ID CSCul36003.
Max CVSS
5.0
EPSS Score
0.26%
Published
2013-12-14
Updated
2017-11-29

CVE-2013-6709

The registration component in Cisco WebEx Training Center provides the training-session URL before payment is completed, which allows remote attackers to bypass intended access restrictions and join an audio conference by entering credential fields from this URL, aka Bug ID CSCul57111.
Max CVSS
5.0
EPSS Score
0.13%
Published
2013-12-14
Updated
2016-09-15
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close