ID CVE-2018-15446
Summary A vulnerability in Cisco Meeting Server could allow an unauthenticated, remote attacker to gain access to sensitive information. The vulnerability is due to improper protections on data that is returned from user meeting requests when the Guest access via ID and passcode option is set to Legacy mode. An attacker could exploit this vulnerability by sending meeting requests to an affected system. A successful exploit could allow the attacker to determine the values of meeting room unique identifiers, possibly allowing the attacker to conduct further exploits.
References
Vulnerable Configurations
CVSS
Base: None
Impact:
Exploitability:
refmap via4
bid 105856
cisco 20181107 Cisco Meeting Server Information Disclosure Vulnerability
Last major update 08-11-2018 - 13:29
Published 08-11-2018 - 13:29
Last modified 09-11-2018 - 06:29
Back to Top