Vulnerability Description
Cisco Unified MeetingPlace 8.6(1.2) and 8.6(1.9) allows remote authenticated users to discover cleartext passwords by reading HTML source code, aka Bug ID CSCuu33050.
CVSS Score
4.0
MEDIUM
AV:N/AC:L/Au:S/C:P/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Unified Meetingplace | 8.6\(1.2\) |
Related Weaknesses (CWE)
References
- http://tools.cisco.com/security/center/viewAlert.x?alertId=39470Vendor Advisory
- http://www.securityfocus.com/bid/75380Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1032703Third Party AdvisoryVDB Entry
- http://tools.cisco.com/security/center/viewAlert.x?alertId=39470Vendor Advisory
- http://www.securityfocus.com/bid/75380Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1032703Third Party AdvisoryVDB Entry
FAQ
What is CVE-2015-4214?
CVE-2015-4214 is a vulnerability with a CVSS score of 4.0 (MEDIUM). Cisco Unified MeetingPlace 8.6(1.2) and 8.6(1.9) allows remote authenticated users to discover cleartext passwords by reading HTML source code, aka Bug ID CSCuu33050.
How severe is CVE-2015-4214?
CVE-2015-4214 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-4214?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Unified Meetingplace.