CVE-2014-3301
Cisco WebEx Meetings Server < 1.5(1.131) - Exposure of Sensitive Information via Stack Trace
Title source: llmDescription
The ProfileAction controller in Cisco WebEx Meetings Server (CWMS) 1.5(.1.131) and earlier allows remote attackers to obtain sensitive information by reading stack traces in returned messages, aka Bug ID CSCuj81700.
References (6)
Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/94895
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1030642
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/60573
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3301
Vendor Advisory x_refsource_confirm
http://tools.cisco.com/security/center/viewAlert.x?alertId=35040
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/68894
Scores
EPSS
0.0185
EPSS Percentile
76.5%
Details
CWE
CWE-200
Status
published
Products (3)
cisco/webex_meetings_server
1.5
cisco/webex_meetings_server
1.5\(.1.6\)
cisco/webex_meetings_server
< 1.5\(.1.131\)
Published
Jul 26, 2014
Tracked Since
Feb 18, 2026