CVE-2009-0614

EUVD-2009-0617
Unspecified vulnerability in the Web Server in Cisco Unified MeetingPlace Web Conferencing 6.0 before 6.0(517.0) (aka 6.0 MR4) and 7.0 before 7.0(2) (aka 7.0 MR1) allows remote attackers to bypass authentication and obtain administrative access via a crafted URL.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 66%
Affected Products (NVD)
VendorProductVersion
ciscounified_meetingplace_web_conferencing
6.0\(171\) ≤
𝑥
< 6.0\(517.0\)
ciscounified_meetingplace_web_conferencing
7.0\(1\) ≤
𝑥
< 7.0\(2\)
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc86.shtml
http://www.securityfocus.com/bid/33901
https://exchange.xforce.ibmcloud.com/vulnerabilities/48888
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc86.shtml
http://www.securityfocus.com/bid/33901
https://exchange.xforce.ibmcloud.com/vulnerabilities/48888