CVE-2015-0597
Cisco WebEx Meetings Server < 1.5(.1.131) - Administrative Account Enumeration via Forgot Password Feature
Title source: llmDescription
The Forgot Password feature in Cisco WebEx Meetings Server 1.5(.1.131) and earlier allows remote attackers to enumerate administrative accounts via crafted packets, aka Bug IDs CSCuj67166 and CSCuj67159.
References (5)
Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/100658
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0597
Vendor Advisory x_refsource_confirm
http://tools.cisco.com/security/center/viewAlert.x?alertId=37240
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/72373
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031678
Scores
EPSS
0.0255
EPSS Percentile
83.2%
Details
CWE
CWE-20
CWE-200
Status
published
Products (1)
cisco/webex_meetings_server
< 1.5\(.1.131\)
Published
Feb 02, 2015
Tracked Since
Feb 18, 2026