CVE-2014-3304

Cisco WebEx Meetings Server - Unauthenticated User Account Enumeration via OutlookAction Class

Title source: llm
STIX 2.1

Description

The OutlookAction Class in Cisco WebEx Meetings Server allows remote attackers to enumerate user accounts by entering crafted URLs and examining the returned messages, aka Bug ID CSCuj81722.

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1030641
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/68911
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/94880

Scores

EPSS 0.0179
EPSS Percentile 75.8%

Details

CWE
CWE-200
Status published
Products (1)
cisco/webex_meetings_server
Published Jul 28, 2014
Tracked Since Feb 18, 2026