CVE-2014-2199: Infoleak
First published: Tue May 20 2014(Updated: )
meetinginfo.do in Cisco WebEx Event Center, WebEx Meeting Center, WebEx Sales Center, WebEx Training Center, WebEx Meetings Server 1.5(.1.131) and earlier, and WebEx Business Suite (WBS) 27 before 27.32.31.16, 28 before 28.12.13.18, and 29 before 29.5.1.12 allows remote attackers to obtain sensitive meeting information by leveraging knowledge of a meeting identifier, aka Bug IDs CSCuo68624 and CSCue46738.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco WebEx Business Suite | =27.0 | |
| Cisco WebEx Business Suite | =28.0 | |
| Cisco WebEx Business Suite | =29.0 | |
| Cisco WebEx Event Center | ||
| Cisco WebEx Meeting Center | ||
| Cisco WebEx Meetings Server | <=1.5\(.1.131\) | |
| Cisco WebEx Sales Center | ||
| Cisco WebEx Training Center |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/severity
- agent/tags
- agent/description
- agent/event
- agent/first-publish-date
- vendor/cisco
- canonical/cisco webex business suite
- version/cisco webex business suite/27.0
- version/cisco webex business suite/28.0
- version/cisco webex business suite/29.0
- canonical/cisco webex event center
- canonical/cisco webex meeting center
- canonical/cisco webex meetings server
- version/cisco webex meetings server/1.5\(.1.131\)
- canonical/cisco webex sales center
- canonical/cisco webex training center