CVE-2013-3425

The Meeting Center component in Cisco WebEx 11 generates different error messages for invalid file-access attempts depending on whether a file exists, which allows remote authenticated users to enumerate files via a series of SPI calls, aka Bug ID CSCuc35965.

Data: Cisco advisories 1 day ago · Cisco CSAF 4 hours ago · NVD CVEs 7 hours ago · NVD CPEs 1 day ago · CISA KEV 1 day ago · EPSS 1 day ago

Severity	MEDIUM
CVSS	4.0
EPSS	0.18% EPSS low
CWE	CWE-264
KEV
Published	12 years ago
Modified	3 weeks ago

Products with public affected evidence

Product	Advisory	Affected evidence
Cisco WebEx Meeting Center	Cisco-SA-20130802-CVE-2013-3425	structured affected CSAF product_status