CVE-2018-0111

CVE Database · CVE-2018-0111

CVE-2018-0111

· N/AModified

CVSS v3.1

N/A

EPSS

1.76%

Published

Jan 18, 2018

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A vulnerability in Cisco WebEx Meetings Server could allow an unauthenticated, remote attacker to access sensitive data about the application. An attacker could exploit this vulnerability to gain information to conduct additional reconnaissance attacks. The vulnerability is due to a design flaw in Cisco WebEx Meetings Server, which could include internal network information that should be restricted. An attacker could exploit the vulnerability by utilizing available resources to study the customer network. An exploit could allow the attacker to discover sensitive data about the application. Cisco Bug IDs: CSCvg46806.

Weaknesses (CWE)

CWE-200CWE-200

Affected Products (1)

cisco · webex_meetings_servervulnerable

References (6)

http://www.securityfocus.com/bid/102723

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1040237

Third Party AdvisoryVDB Entry

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-wms3

Vendor Advisory

http://www.securityfocus.com/bid/102723

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1040237

Third Party AdvisoryVDB Entry

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-wms3

KEV Catalog EPSS Scores Vendors All CVEs