CVE-2017-12363
MEDIUMCisco WebEx Meeting Server - Info Disclosure
Title source: llmDescription
A vulnerability in Cisco WebEx Meeting Server could allow an unauthenticated, remote attacker to modify the welcome message of a meeting on an affected system. The vulnerability is due to insufficient security settings on meetings. An attacker could exploit this vulnerability by modifying the welcome message to a meeting. A successful exploit could allow the attacker to modify the welcome message of any known meeting. Cisco Bug IDs: CSCvf68695.
Scores
CVSS v3
5.3
EPSS
0.0088
EPSS Percentile
75.1%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Classification
CWE
CWE-264
CWE-668
Status
draft
Affected Products (2)
cisco/webex_meetings_server
cisco/webex_meetings_server
Timeline
Published
Nov 30, 2017
Tracked Since
Feb 18, 2026