← Back

CVE-2014-2199

nvd nist
Published: May 20, 2014Modified: May 6, 2026

JSON object

Loading...
5.0
Vector
AV:N/AC:L/Au:N/C:P/I:N/A:N
Exploitability: 10.0 / Impact: 2.9
Source: NVD

Description

meetinginfo.do in Cisco WebEx Event Center, WebEx Meeting Center, WebEx Sales Center, WebEx Training Center, WebEx Meetings Server 1.5(.1.131) and earlier, and WebEx Business Suite (WBS) 27 before 27.32.31.16, 28 before 28.12.13.18, and 29 before 29.5.1.12 allows remote attackers to obtain sensitive meeting information by leveraging knowledge of a meeting identifier, aka Bug IDs CSCuo68624 and CSCue46738.

Affected (8)

Cisco
6 products
Webex Business Suite
Webex Event Center
Webex Meeting Center
Webex Meetings Server
Webex Sales Center
Webex Training Center
Configuration A
8 vulnerable
Vulnerable SoftwareAffected Versions
Cisco
Webex Business Suite
Version 27.0
Webex Business Suite
Version 28.0
Webex Business Suite
Version 29.0
Webex Event Center
All versions
Webex Meeting Center
All versions
Webex Meetings Server
Up to 1.5\(.1.131\)
Webex Sales Center
All versions
Webex Training Center
All versions

Related CWEs

CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (6)

Source: psirt@cisco.com
Vendor Advisory
Source: psirt@cisco.com
Vendor Advisory
Source: psirt@cisco.com
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry

Timeline

No history available yet.