CVE-2017-3880

MEDIUM

Cisco WebEx Meetings Server - Auth Bypass

Title source: llm

Description

An Authentication Bypass vulnerability in Cisco WebEx Meetings Server could allow an unauthenticated, remote attacker to access limited meeting information on the Cisco WebEx Meetings Server. More Information: CSCvd50728. Known Affected Releases: 2.6 2.7 2.8 CWMS-2.5MR1 Orion1.1.2.patch T29_orion_merge.

References (3)

Scores

CVSS v3 6.5
EPSS 0.0038
EPSS Percentile 59.1%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Classification

CWE
CWE-287
Status draft

Affected Products (31)

cisco/webex_meetings_server
cisco/webex_meetings_server
cisco/webex_meetings_server
cisco/webex_meetings_server
cisco/webex_meetings_server
cisco/webex_meetings_server
cisco/webex_meetings_server
cisco/webex_meetings_server
cisco/webex_meetings_server
cisco/webex_meetings_server
cisco/webex_meetings_server
cisco/webex_meetings_server
cisco/webex_meetings_server
cisco/webex_meetings_server
cisco/webex_meetings_server
... and 16 more

Timeline

Published Mar 17, 2017
Tracked Since Feb 18, 2026