CVE-2017-12297 - OpenCVE

A vulnerability in Cisco WebEx Meeting Center could allow an authenticated, remote attacker to initiate connections to arbitrary hosts, aka a "URL Redirection Vulnerability." The vulnerability is due to insufficient access control for HTTP traffic directed to the Cisco WebEx Meeting Center. An attacker could exploit this vulnerability by sending a malicious URL to the Cisco WebEx Meeting Center. An exploit could allow the attacker to connect to arbitrary hosts. Cisco Bug IDs: CSCvf63843.

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:L/Au:S/C:N/I:P/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Cisco	Webex Meeting Center

Configuration 1 [-]

OR	cpe:2.3:a:cisco:webex_meeting_center:t30:sp7::::::
	cpe:2.3:a:cisco:webex_meeting_center:t30:sp8::::::
	cpe:2.3:a:cisco:webex_meeting_center:t30:sp9::::::
	cpe:2.3:a:cisco:webex_meeting_center:t31:sp8::::::
	cpe:2.3:a:cisco:webex_meeting_center:t31:sp9::::::
	cpe:2.3:a:cisco:webex_meeting_center:t32:::::::*
	cpe:2.3:a:cisco:webex_meeting_center:t32.3:::::::*
	cpe:2.3:a:cisco:webex_meeting_center:t32.4:::::::*
	cpe:2.3:a:cisco:webex_meeting_center:t32.6:::::::*
	cpe:2.3:a:cisco:webex_meeting_center:t32.7:::::::*
	cpe:2.3:a:cisco:webex_meeting_center:t32.8:::::::*

References

Link	Resource
http://www.securityfocus.com/bid/101985	Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1039919	Third Party Advisory VDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171129-wmc	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: cisco

Published: 2017-11-30T09:00:00

Updated: 2017-12-01T10:57:01

Reserved: 2017-08-03T00:00:00

Link: CVE-2017-12297

JSON object: View

NVD Information

Status : Modified

Published: 2017-11-30T09:29:00.197

Modified: 2019-10-09T23:22:52.840

Link: CVE-2017-12297

JSON object: View

Redhat Information

No data.

CWE

CWE-20

{"containers": {"cna": {"affected": [{"product": "Cisco WebEx Meeting Center", "vendor": "n/a", "versions": [{"status": "affected", "version": "Cisco WebEx Meeting Center"}]}], "datePublic": "2017-11-30T00:00:00", "descriptions": [{"lang": "en", "value": "A vulnerability in Cisco WebEx Meeting Center could allow an authenticated, remote attacker to initiate connections to arbitrary hosts, aka a \"URL Redirection Vulnerability.\" The vulnerability is due to insufficient access control for HTTP traffic directed to the Cisco WebEx Meeting Center. An attacker could exploit this vulnerability by sending a malicious URL to the Cisco WebEx Meeting Center. An exploit could allow the attacker to connect to arbitrary hosts. Cisco Bug IDs: CSCvf63843."}], "problemTypes": [{"descriptions": [{"cweId": "CWE-20", "description": "CWE-20", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2017-12-01T10:57:01", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171129-wmc"}, {"name": "101985", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/101985"}, {"name": "1039919", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1039919"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@cisco.com", "ID": "CVE-2017-12297", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Cisco WebEx Meeting Center", "version": {"version_data": [{"version_value": "Cisco WebEx Meeting Center"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A vulnerability in Cisco WebEx Meeting Center could allow an authenticated, remote attacker to initiate connections to arbitrary hosts, aka a \"URL Redirection Vulnerability.\" The vulnerability is due to insufficient access control for HTTP traffic directed to the Cisco WebEx Meeting Center. An attacker could exploit this vulnerability by sending a malicious URL to the Cisco WebEx Meeting Center. An exploit could allow the attacker to connect to arbitrary hosts. Cisco Bug IDs: CSCvf63843."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-20"}]}]}, "references": {"reference_data": [{"name": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171129-wmc", "refsource": "CONFIRM", "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171129-wmc"}, {"name": "101985", "refsource": "BID", "url": "http://www.securityfocus.com/bid/101985"}, {"name": "1039919", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1039919"}]}}}}, "cveMetadata": {"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2017-12297", "datePublished": "2017-11-30T09:00:00", "dateReserved": "2017-08-03T00:00:00", "dateUpdated": "2017-12-01T10:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:webex_meeting_center:t30:sp7:*:*:*:*:*:*", "matchCriteriaId": "DA104A3D-5A22-4D3B-8EE2-28BE7A5E6325", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:webex_meeting_center:t30:sp8:*:*:*:*:*:*", "matchCriteriaId": "05BBAE9B-0492-4B37-8667-4953E8951D25", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:webex_meeting_center:t30:sp9:*:*:*:*:*:*", "matchCriteriaId": "C0BA459F-ECD3-4C44-B9C6-46004661F6A9", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:webex_meeting_center:t31:sp8:*:*:*:*:*:*", "matchCriteriaId": "EADA51E0-90A1-441B-B494-06ABBA8D590A", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:webex_meeting_center:t31:sp9:*:*:*:*:*:*", "matchCriteriaId": "93331589-0F03-4AC1-86A9-39DD7EBCFF0A", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:webex_meeting_center:t32:*:*:*:*:*:*:*", "matchCriteriaId": "6C2F2F01-6B6B-4F77-95C6-4200325B2174", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:webex_meeting_center:t32.3:*:*:*:*:*:*:*", "matchCriteriaId": "B8B8881E-69C5-454F-920D-762A0D2EA876", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:webex_meeting_center:t32.4:*:*:*:*:*:*:*", "matchCriteriaId": "C12B18B6-CFDE-438F-89E9-17ED31426A29", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:webex_meeting_center:t32.6:*:*:*:*:*:*:*", "matchCriteriaId": "DC231A3B-FA47-4275-9051-A5CCD91A5FDE", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:webex_meeting_center:t32.7:*:*:*:*:*:*:*", "matchCriteriaId": "D068D92A-9D26-41DF-AC1F-4880FF26FFF7", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:webex_meeting_center:t32.8:*:*:*:*:*:*:*", "matchCriteriaId": "5A79EEB2-6702-4EE5-A888-9124ED101E65", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in Cisco WebEx Meeting Center could allow an authenticated, remote attacker to initiate connections to arbitrary hosts, aka a \"URL Redirection Vulnerability.\" The vulnerability is due to insufficient access control for HTTP traffic directed to the Cisco WebEx Meeting Center. An attacker could exploit this vulnerability by sending a malicious URL to the Cisco WebEx Meeting Center. An exploit could allow the attacker to connect to arbitrary hosts. Cisco Bug IDs: CSCvf63843."}, {"lang": "es", "value": "Una vulnerabilidad en Cisco WebEx Meeting Center podr\u00eda permitir a un atacante remoto autenticado iniciar conexiones con hosts arbitrarios. Esta vulnerabilidad tambi\u00e9n se conoce como \"URL Redirection Vulnerability\". La vulnerabilidad se debe a un control insuficiente de acceso para el tr\u00e1fico HTTP dirigido a Cisco WebEx Meeting Center. Un atacante podr\u00eda explotar esta vulnerabilidad enviando una URL maliciosa a Cisco WebEx Meeting Center. Esta vulnerabilidad podr\u00eda permitir que el atacante se conecte a hosts arbitrarios. Cisco Bug IDs: CSCvf63843."}], "id": "CVE-2017-12297", "lastModified": "2019-10-09T23:22:52.840", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.0, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N", "version": "3.0"}, "exploitabilityScore": 3.1, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-11-30T09:29:00.197", "references": [{"source": "ykramarz@cisco.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/101985"}, {"source": "ykramarz@cisco.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1039919"}, {"source": "ykramarz@cisco.com", "tags": ["Vendor Advisory"], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171129-wmc"}], "sourceIdentifier": "ykramarz@cisco.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-20"}], "source": "ykramarz@cisco.com", "type": "Secondary"}]}