Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2018-0263 | First vendor Publication | 2018-06-07 |
Vendor | Cve | Last vendor Modification | 2020-09-04 |
Security-Database Scoring CVSS v3
Cvss vector : CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N | |||
---|---|---|---|
Overall CVSS Score | 7.4 | ||
Base Score | 7.4 | Environmental Score | 7.4 |
impact SubScore | 4 | Temporal Score | 7.4 |
Exploitabality Sub Score | 2.8 | ||
Attack Vector | Adjacent | Attack Complexity | Low |
Privileges Required | None | User Interaction | None |
Scope | Changed | Confidentiality Impact | High |
Integrity Impact | None | Availability Impact | None |
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:A/AC:L/Au:N/C:P/I:N/A:N) | |||
---|---|---|---|
Cvss Base Score | 3.3 | Attack Range | Adjacent network |
Cvss Impact Score | 2.9 | Attack Complexity | Low |
Cvss Expoit Score | 6.5 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
A vulnerability in Cisco Meeting Server (CMS) could allow an unauthenticated, adjacent attacker to access services running on internal device interfaces of an affected system. The vulnerability is due to incorrect default configuration of the device, which can expose internal interfaces and ports on the external interface of the system. A successful exploit could allow the attacker to gain unauthenticated access to configuration and database files and sensitive meeting information on an affected system. This vulnerability affects Cisco Meeting Server (CMS) 2000 Platforms that are running a CMS Software release prior to Release 2.2.13 or Release 2.3.4. Cisco Bug IDs: CSCvg76471. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0263 |
CPE : Common Platform Enumeration
Snort® IPS/IDS
Date | Description |
---|---|
2020-12-05 | Cisco Meeting Server user configuration download attempt RuleID : 46750 - Revision : 2 - Type : SERVER-OTHER |
2020-12-05 | Cisco Meeting Server configuration download attempt RuleID : 46749 - Revision : 1 - Type : SERVER-OTHER |
Sources (Detail)
Source | Url |
---|---|
BID | http://www.securityfocus.com/bid/104419 |
CONFIRM | https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-s... |
SECTRACK | http://www.securitytracker.com/id/1041065 |
Alert History
Date | Informations |
---|---|
2021-05-04 13:07:31 |
|
2021-04-22 02:21:30 |
|
2020-12-05 21:23:46 |
|
2020-09-04 21:23:06 |
|
2020-05-23 02:09:21 |
|
2020-05-23 01:05:00 |
|
2019-10-10 05:20:11 |
|
2019-07-17 12:10:26 |
|
2019-06-25 12:10:01 |
|
2019-02-27 12:09:05 |
|
2018-07-20 17:19:10 |
|
2018-06-13 09:19:19 |
|
2018-06-10 09:19:09 |
|
2018-06-07 17:19:06 |
|