Bypassing Access Restrictions in Cisco WebEx Social User-Management Page (Bug ID CSCue67190)

CVE-2013-1245 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:P/A:N

The user-management page in Cisco WebEx Social relies on client-side validation of values in the Screen Name, First Name, Middle Name, Last Name, Email Address, and Job Title fields, which allows remote authenticated users to bypass intended access restrictions via crafted requests, aka Bug ID CSCue67190.

Learn more about our Cis Benchmark Audit For Cisco.