Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Webex Training Unauthorized Meeting Join Vulnerability
Vulnerability Description
A vulnerability in Cisco Webex Training could allow an authenticated, remote attacker to join a password-protected meeting without providing the meeting password. The vulnerability is due to improper validation of input to API requests that are a part of meeting join flow. An attacker could exploit this vulnerability by sending an API request to the application, which would return a URL that includes a meeting join page that is prepopulated with the meeting username and password. A successful exploit could allow the attacker to join the password-protected meeting. The attacker would be visible in the attendee list of the meeting.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
输入验证不恰当
Vulnerability Title
Cisco Webex Training 输入验证错误漏洞
Vulnerability Description
Cisco Webex Training是思科(Cisco)的一款高效、便捷、实时互动的远程培训系统。 Cisco Webex Training中存在输入验证错误漏洞,该漏洞源于未对输入的数据进行正确的验证,允许远程攻击者无需提供会议密码,即可加入受密码保护的会议。
CVSS Information
N/A
Vulnerability Type
N/A