Description
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Unified MeetingPlace Solution, as used in Unified MeetingPlace Web Conferencing and Unified MeetingPlace, allows remote attackers to hijack the authentication of arbitrary users, aka Bug IDs CSCui45209 and CSCui44674.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1029037
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5494
Scores
EPSS
0.0082
EPSS Percentile
52.8%
Details
CWE
CWE-352
Status
published
Products (2)
cisco/unified_meetingplace
cisco/unified_meetingplace_web_conferencing
Published
Sep 16, 2013
Tracked Since
Feb 18, 2026