{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-22T17:08:40.948","vulnerabilities":[{"cve":{"id":"CVE-2017-12297","sourceIdentifier":"psirt@cisco.com","published":"2017-11-30T09:29:00.197","lastModified":"2025-04-20T01:37:25.860","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability in Cisco WebEx Meeting Center could allow an authenticated, remote attacker to initiate connections to arbitrary hosts, aka a \"URL Redirection Vulnerability.\" The vulnerability is due to insufficient access control for HTTP traffic directed to the Cisco WebEx Meeting Center. An attacker could exploit this vulnerability by sending a malicious URL to the Cisco WebEx Meeting Center. An exploit could allow the attacker to connect to arbitrary hosts. Cisco Bug IDs: CSCvf63843."},{"lang":"es","value":"Una vulnerabilidad en Cisco WebEx Meeting Center podría permitir a un atacante remoto autenticado iniciar conexiones con hosts arbitrarios. Esta vulnerabilidad también se conoce como \"URL Redirection Vulnerability\". La vulnerabilidad se debe a un control insuficiente de acceso para el tráfico HTTP dirigido a Cisco WebEx Meeting Center. Un atacante podría explotar esta vulnerabilidad enviando una URL maliciosa a Cisco WebEx Meeting Center. Esta vulnerabilidad podría permitir que el atacante se conecte a hosts arbitrarios. Cisco Bug IDs: CSCvf63843."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N","baseScore":5.0,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:N/I:P/A:N","baseScore":4.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"psirt@cisco.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:webex_meeting_center:t30:sp7:*:*:*:*:*:*","matchCriteriaId":"DA104A3D-5A22-4D3B-8EE2-28BE7A5E6325"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:webex_meeting_center:t30:sp8:*:*:*:*:*:*","matchCriteriaId":"05BBAE9B-0492-4B37-8667-4953E8951D25"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:webex_meeting_center:t30:sp9:*:*:*:*:*:*","matchCriteriaId":"C0BA459F-ECD3-4C44-B9C6-46004661F6A9"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:webex_meeting_center:t31:sp8:*:*:*:*:*:*","matchCriteriaId":"EADA51E0-90A1-441B-B494-06ABBA8D590A"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:webex_meeting_center:t31:sp9:*:*:*:*:*:*","matchCriteriaId":"93331589-0F03-4AC1-86A9-39DD7EBCFF0A"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:webex_meeting_center:t32:*:*:*:*:*:*:*","matchCriteriaId":"6C2F2F01-6B6B-4F77-95C6-4200325B2174"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:webex_meeting_center:t32.3:*:*:*:*:*:*:*","matchCriteriaId":"B8B8881E-69C5-454F-920D-762A0D2EA876"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:webex_meeting_center:t32.4:*:*:*:*:*:*:*","matchCriteriaId":"C12B18B6-CFDE-438F-89E9-17ED31426A29"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:webex_meeting_center:t32.6:*:*:*:*:*:*:*","matchCriteriaId":"DC231A3B-FA47-4275-9051-A5CCD91A5FDE"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:webex_meeting_center:t32.7:*:*:*:*:*:*:*","matchCriteriaId":"D068D92A-9D26-41DF-AC1F-4880FF26FFF7"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:webex_meeting_center:t32.8:*:*:*:*:*:*:*","matchCriteriaId":"5A79EEB2-6702-4EE5-A888-9124ED101E65"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/101985","source":"psirt@cisco.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1039919","source":"psirt@cisco.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171129-wmc","source":"psirt@cisco.com","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/101985","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1039919","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171129-wmc","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}