CVE-2015-4214Sensitive Information Exposure in Cisco Unified Meetingplace

CWE-200Sensitive Information Exposure4 documents4 sources
Severity
4.0MEDIUMNVD
EPSS
0.3%
top 47.40%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Unified Meetingplace
Timeline
PublishedJun 24
Latest updateMay 17

Description

Cisco Unified MeetingPlace 8.6(1.2) and 8.6(1.9) allows remote authenticated users to discover cleartext passwords by reading HTML source code, aka Bug ID CSCuu33050.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 8.0 | Impact: 2.9

Affected Packages1 packages

NVDcisco/unified_meetingplace8.6\(1.2\), 8.6\(1.9\)+1

🔴Vulnerability Details

2
GHSA
GHSA-54xj-7cwx-cc55: Cisco Unified MeetingPlace 82022-05-17
CVEList
CVE-2015-4214: Cisco Unified MeetingPlace 82015-06-24

📋Vendor Advisories

1
Cisco
Cisco Unified MeetingPlace Plain Text Password Information Disclosure Vulnerability2015-06-23
CVE-2015-4214 — Sensitive Information Exposure in Cisco | cvebase