Vulnerability Description
The web framework in the server in Cisco Unified MeetingPlace Web Conferencing allows remote attackers to bypass intended access restrictions and read unspecified web pages via crafted parameters, aka Bug ID CSCuh86385.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Unified Meetingplace Web Conferencing | - |
Related Weaknesses (CWE)
References
- http://osvdb.org/95583
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3438Vendor Advisory
- http://tools.cisco.com/security/center/viewAlert.x?alertId=30186Vendor Advisory
- http://osvdb.org/95583
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3438Vendor Advisory
- http://tools.cisco.com/security/center/viewAlert.x?alertId=30186Vendor Advisory
FAQ
What is CVE-2013-3438?
CVE-2013-3438 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The web framework in the server in Cisco Unified MeetingPlace Web Conferencing allows remote attackers to bypass intended access restrictions and read unspecified web pages via crafted parameters, aka...
How severe is CVE-2013-3438?
CVE-2013-3438 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-3438?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Unified Meetingplace Web Conferencing.