Cisco Jabber Desktop and Mobile Client Software Vulnerabilities
2021-03-24T16:00:00
ID CISCO-SA-CISCO-JABBER-PWRTATTC Type cisco Reporter Cisco Modified 2021-03-25T13:44:34
Description
Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition.
For more information about these vulnerabilities, see the Details ["#details"] section of this advisory.
Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.
This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"]
{"id": "CISCO-SA-CISCO-JABBER-PWRTATTC", "type": "cisco", "bulletinFamily": "software", "title": "Cisco Jabber Desktop and Mobile Client Software Vulnerabilities", "description": "Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition.\n\nFor more information about these vulnerabilities, see the Details [\"#details\"] section of this advisory.\n\nCisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.\n\nThis advisory is available at the following link:\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC [\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC\"]", "published": "2021-03-24T16:00:00", "modified": "2021-03-25T13:44:34", "cvss": {"score": 9.9, "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}, "cvss2": {}, "cvss3": {}, "href": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC", "reporter": "Cisco", "references": ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"], "cvelist": ["CVE-2021-1411", "CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471"], "immutableFields": [], "lastseen": "2021-09-02T22:30:37", "viewCount": 45, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"]}, {"type": "kaspersky", "idList": ["KLA12132"]}, {"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cve", "idList": ["CVE-2021-1469", "CVE-2021-1471", "CVE-2021-1418", "CVE-2021-1417", "CVE-2021-1411"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/"]}, {"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}], "modified": "2021-09-02T22:30:37", "rev": 2}, "score": {"value": 7.4, "vector": "NONE", "modified": "2021-09-02T22:30:37", "rev": 2}, "vulnersScore": 7.4}, "affectedSoftware": [{"version": "any", "operator": "eq", "name": "cisco jabber"}, {"version": "any", "operator": "eq", "name": "cisco jabber"}], "vendorCvss": {"score": "9.9", "severity": "critical"}}
{"nessus": [{"id": "CISCO-SA-CISCO-JABBER-PWRTATTC.NASL", "hash": "30b0d15065e55060e09534015497b846", "type": "nessus", "bulletinFamily": "scanner", "title": "Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)", "description": "According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a remote, authenticated attacker to execute arbitrary programs on the underlying operating system with the privileges of the user account that is running the Cisco Jabber client software or gain access to sensitive information.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.", "published": "2021-03-26T00:00:00", "modified": "2021-06-18T00:00:00", "cvss": {"score": 9, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.9, "vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148137", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1417", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1471", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1411", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1469", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1418", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270", "http://www.nessus.org/u?907b8da4", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075"], "cvelist": ["CVE-2021-1411", "CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471"], "immutableFields": [], "lastseen": "2021-10-12T23:48:45", "history": [{"bulletin": {"id": "CISCO-SA-CISCO-JABBER-PWRTATTC.NASL", "hash": "042891fa4a8c2e28913d0fe7e90804f6c7bc003c8500c91b97677378c29f2220", "type": "nessus", "bulletinFamily": "scanner", "title": "Cisco Jabber for Windows Multiple Vulnerbilities (cisco-sa-cisco-jabber-PWrTATTC)", "description": "According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.", "published": "2021-03-26T00:00:00", "modified": "2021-03-26T00:00:00", "cvss": {"score": 9.0, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.9, "vector": "AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148137", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?907b8da4", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073"], "cvelist": ["CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471", "CVE-2021-1411"], "immutableFields": [], "lastseen": "2021-03-27T01:38:19", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2021-03-27T01:38:19", "references": [{"idList": ["CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471", "CVE-2021-1411"], "type": "cve"}, {"idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"], "type": "thn"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"], "type": "cisco"}], "rev": 2}, "score": {"modified": "2021-03-27T01:38:19", "rev": 2, "value": 7.1, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "148137", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148137);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/03/26\");\n\n script_cve_id(\n \"CVE-2021-1411\",\n \"CVE-2021-1417\",\n \"CVE-2021-1418\",\n \"CVE-2021-1469\",\n \"CVE-2021-1471\"\n );\n\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96073\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96075\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96079\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx36433\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx43270\");\n script_xref(name:\"CISCO-SA\", value:\"cisco-sa-cisco-jabber-PWrTATTC\");\n script_xref(name:\"IAVA\", value:\"2021-A-0142\");\n\n script_name(english:\"Cisco Jabber for Windows Multiple Vulnerbilities (cisco-sa-cisco-jabber-PWrTATTC)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote device is missing a vendor-supplied security patch.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.\");\n # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?907b8da4\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-1411\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/03/26\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:cisco:jabber\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"cisco_jabber_client_installed.nbin\");\n script_require_keys(\"installed_sw/Cisco Jabber for Windows\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\napp_info = vcf::get_app_info(app:'Cisco Jabber for Windows', win_local:TRUE);\n\nconstraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.1.5'},\n { 'min_version' : '12.5 ', 'fixed_version' : '12.5.4'},\n { 'min_version' : '12.6 ', 'fixed_version' : '12.6.5'},\n { 'min_version' : '12.7 ', 'fixed_version' : '12.7.4'},\n { 'min_version' : '12.8 ', 'fixed_version' : '12.8.5'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.5'}\n];\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Windows", "cpe": ["cpe:/a:cisco:jabber"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-03-27T01:38:19", "differentElements": ["sourceData"], "edition": 1}, {"bulletin": {"id": "CISCO-SA-CISCO-JABBER-PWRTATTC.NASL", "hash": "542fc091f212db781c6ce6a2ef9cbb0db990093758ae9fce023f539b81f5a329", "type": "nessus", "bulletinFamily": "scanner", "title": "Cisco Jabber for Windows Multiple Vulnerbilities (cisco-sa-cisco-jabber-PWrTATTC)", "description": "According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.", "published": "2021-03-26T00:00:00", "modified": "2021-03-26T00:00:00", "cvss": {"score": 9.0, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.9, "vector": "AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148137", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?907b8da4", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073"], "cvelist": ["CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471", "CVE-2021-1411"], "immutableFields": [], "lastseen": "2021-03-31T01:42:53", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2021-03-31T01:42:53", "references": [{"idList": ["CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471", "CVE-2021-1411"], "type": "cve"}, {"idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"], "type": "thn"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"], "type": "cisco"}], "rev": 2}, "score": {"modified": "2021-03-31T01:42:53", "rev": 2, "value": 7.3, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "148137", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148137);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/03/30\");\n\n script_cve_id(\n \"CVE-2021-1411\",\n \"CVE-2021-1417\",\n \"CVE-2021-1418\",\n \"CVE-2021-1469\",\n \"CVE-2021-1471\"\n );\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96073\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96075\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96079\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx36433\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx43270\");\n script_xref(name:\"CISCO-SA\", value:\"cisco-sa-cisco-jabber-PWrTATTC\");\n script_xref(name:\"IAVA\", value:\"2021-A-0142\");\n\n script_name(english:\"Cisco Jabber for Windows Multiple Vulnerbilities (cisco-sa-cisco-jabber-PWrTATTC)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote device is missing a vendor-supplied security patch.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.\");\n # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?907b8da4\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-1411\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/03/26\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:cisco:jabber\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"cisco_jabber_client_installed.nbin\");\n script_require_keys(\"installed_sw/Cisco Jabber for Windows\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\napp_info = vcf::get_app_info(app:'Cisco Jabber for Windows', win_local:TRUE);\n\nconstraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.1.5'},\n { 'min_version' : '12.5 ', 'fixed_version' : '12.5.4'},\n { 'min_version' : '12.6 ', 'fixed_version' : '12.6.5'},\n { 'min_version' : '12.7 ', 'fixed_version' : '12.7.4'},\n { 'min_version' : '12.8 ', 'fixed_version' : '12.8.5'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.5'}\n];\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Windows", "cpe": ["cpe:/a:cisco:jabber"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-03-31T01:42:53", "differentElements": ["naslFamily", "sourceData", "title"], "edition": 2}, {"bulletin": {"id": "CISCO-SA-CISCO-JABBER-PWRTATTC.NASL", "hash": "8313957185513ce68b0e0e5a5b2c6051e205cd08838e20758ddae1bc3d4b806c", "type": "nessus", "bulletinFamily": "scanner", "title": "Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)", "description": "According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.", "published": "2021-03-26T00:00:00", "modified": "2021-03-26T00:00:00", "cvss": {"score": 9.0, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.9, "vector": "AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148137", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?907b8da4", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073"], "cvelist": ["CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471", "CVE-2021-1411"], "immutableFields": [], "lastseen": "2021-04-07T22:50:10", "history": [], "viewCount": 5, "enchantments": {"dependencies": {"modified": "2021-04-07T22:50:10", "references": [{"idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/"], "type": "metasploit"}, {"idList": ["CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471", "CVE-2021-1411"], "type": "cve"}, {"idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"], "type": "thn"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"], "type": "cisco"}], "rev": 2}, "score": {"modified": "2021-04-07T22:50:10", "rev": 2, "value": 7.4, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "148137", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148137);\n script_version(\"1.4\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/04/07\");\n\n script_cve_id(\n \"CVE-2021-1411\",\n \"CVE-2021-1417\",\n \"CVE-2021-1418\",\n \"CVE-2021-1469\",\n \"CVE-2021-1471\"\n );\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96073\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96075\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96079\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx36433\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx43270\");\n script_xref(name:\"CISCO-SA\", value:\"cisco-sa-cisco-jabber-PWrTATTC\");\n script_xref(name:\"IAVA\", value:\"2021-A-0142\");\n\n script_name(english:\"Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote device is missing a vendor-supplied security patch.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.\");\n # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?907b8da4\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-1411\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/03/26\");\n\n script_set_attribute(attribute:\"agent\", value:\"all\");\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:cisco:jabber\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"cisco_jabber_client_installed.nbin\", \"macosx_cisco_jabber_for_mac_installed.nbin\");\n script_require_ports(\"installed_sw/Cisco Jabber for Windows\", \"installed_sw/Cisco Jabber\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nif (get_kb_item('SMB/Registry/Enumerated'))\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber for Windows', win_local:TRUE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.1.5'},\n { 'min_version' : '12.5 ', 'fixed_version' : '12.5.4'},\n { 'min_version' : '12.6 ', 'fixed_version' : '12.6.5'},\n { 'min_version' : '12.7 ', 'fixed_version' : '12.7.4'},\n { 'min_version' : '12.8 ', 'fixed_version' : '12.8.5'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.5'}\n ];\n}\nelse\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber', win_local:FALSE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.8.7'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.6'}\n ];\n}\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:cisco:jabber"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-04-07T22:50:10", "differentElements": ["sourceData"], "edition": 3}, {"bulletin": {"id": "CISCO-SA-CISCO-JABBER-PWRTATTC.NASL", "hash": "c4208bd8eb8dd7e3786aef2667fb5d36b77bba9143e5a2c10adfb9c2449a764d", "type": "nessus", "bulletinFamily": "scanner", "title": "Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)", "description": "According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.", "published": "2021-03-26T00:00:00", "modified": "2021-03-26T00:00:00", "cvss": {"score": 9.0, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.9, "vector": "AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148137", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?907b8da4", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073"], "cvelist": ["CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471", "CVE-2021-1411"], "immutableFields": [], "lastseen": "2021-06-18T22:53:23", "history": [], "viewCount": 7, "enchantments": {"dependencies": {"modified": "2021-06-18T22:53:23", "references": [{"idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/"], "type": "metasploit"}, {"idList": ["CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471", "CVE-2021-1411"], "type": "cve"}, {"idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"], "type": "thn"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"], "type": "cisco"}], "rev": 2}, "score": {"modified": "2021-06-18T22:53:23", "rev": 2, "value": 7.4, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "148137", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148137);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/06/18\");\n\n script_cve_id(\n \"CVE-2021-1411\",\n \"CVE-2021-1417\",\n \"CVE-2021-1418\",\n \"CVE-2021-1469\",\n \"CVE-2021-1471\"\n );\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96073\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96075\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96079\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx36433\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx43270\");\n script_xref(name:\"CISCO-SA\", value:\"cisco-sa-cisco-jabber-PWrTATTC\");\n script_xref(name:\"IAVA\", value:\"2021-A-0142-S\");\n\n script_name(english:\"Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote device is missing a vendor-supplied security patch.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.\");\n # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?907b8da4\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory\");\n script_set_attribute(attribute:\"agent\", value:\"all\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-1411\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/03/26\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:cisco:jabber\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"cisco_jabber_client_installed.nbin\", \"macosx_cisco_jabber_for_mac_installed.nbin\");\n script_require_ports(\"installed_sw/Cisco Jabber for Windows\", \"installed_sw/Cisco Jabber\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nif (get_kb_item('SMB/Registry/Enumerated'))\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber for Windows', win_local:TRUE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.1.5'},\n { 'min_version' : '12.5 ', 'fixed_version' : '12.5.4'},\n { 'min_version' : '12.6 ', 'fixed_version' : '12.6.5'},\n { 'min_version' : '12.7 ', 'fixed_version' : '12.7.4'},\n { 'min_version' : '12.8 ', 'fixed_version' : '12.8.5'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.5'}\n ];\n}\nelse\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber', win_local:FALSE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.8.7'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.6'}\n ];\n}\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:cisco:jabber"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-06-18T22:53:23", "differentElements": ["cvss2", "cvss3"], "edition": 4}, {"bulletin": {"id": "CISCO-SA-CISCO-JABBER-PWRTATTC.NASL", "hash": "716acbc34a4cc5e32d096d53ab71223d", "type": "nessus", "bulletinFamily": "scanner", "title": "Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)", "description": "According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.", "published": "2021-03-26T00:00:00", "modified": "2021-03-26T00:00:00", "cvss": {"score": 9.0, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 9.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.9, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 6.0}, "href": "https://www.tenable.com/plugins/nessus/148137", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?907b8da4", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073"], "cvelist": ["CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471", "CVE-2021-1411"], "immutableFields": [], "lastseen": "2021-07-28T22:53:19", "history": [], "viewCount": 7, "enchantments": {"dependencies": {"references": [{"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "cve", "idList": ["CVE-2021-1469", "CVE-2021-1417", "CVE-2021-1471", "CVE-2021-1411", "CVE-2021-1418"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/"]}], "modified": "2021-07-28T22:53:19", "rev": 2}, "score": {"value": 7.4, "vector": "NONE", "modified": "2021-07-28T22:53:19", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148137", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148137);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/06/18\");\n\n script_cve_id(\n \"CVE-2021-1411\",\n \"CVE-2021-1417\",\n \"CVE-2021-1418\",\n \"CVE-2021-1469\",\n \"CVE-2021-1471\"\n );\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96073\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96075\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96079\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx36433\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx43270\");\n script_xref(name:\"CISCO-SA\", value:\"cisco-sa-cisco-jabber-PWrTATTC\");\n script_xref(name:\"IAVA\", value:\"2021-A-0142-S\");\n\n script_name(english:\"Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote device is missing a vendor-supplied security patch.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.\");\n # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?907b8da4\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory\");\n script_set_attribute(attribute:\"agent\", value:\"all\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-1411\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/03/26\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:cisco:jabber\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"cisco_jabber_client_installed.nbin\", \"macosx_cisco_jabber_for_mac_installed.nbin\");\n script_require_ports(\"installed_sw/Cisco Jabber for Windows\", \"installed_sw/Cisco Jabber\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nif (get_kb_item('SMB/Registry/Enumerated'))\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber for Windows', win_local:TRUE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.1.5'},\n { 'min_version' : '12.5 ', 'fixed_version' : '12.5.4'},\n { 'min_version' : '12.6 ', 'fixed_version' : '12.6.5'},\n { 'min_version' : '12.7 ', 'fixed_version' : '12.7.4'},\n { 'min_version' : '12.8 ', 'fixed_version' : '12.8.5'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.5'}\n ];\n}\nelse\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber', win_local:FALSE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.8.7'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.6'}\n ];\n}\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:cisco:jabber"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-28T22:53:19", "differentElements": ["cpe", "cvss2", "cvss3", "cvssScoreSource", "description", "exploitEase", "modified", "patchPublicationDate", "references", "solution", "vpr", "vulnerabilityPublicationDate"], "edition": 5}, {"bulletin": {"id": "CISCO-SA-CISCO-JABBER-PWRTATTC.NASL", "hash": "315e6c44e2c641dfef7235582a0be8ad", "type": "nessus", "bulletinFamily": "scanner", "title": "Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)", "description": "According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a remote, authenticated attacker to execute arbitrary programs on the underlying operating system with the privileges of the user account that is running the Cisco Jabber client software or gain access to sensitive information.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.", "published": "2021-03-26T00:00:00", "modified": "2021-06-18T00:00:00", "cvss": {"score": 9, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.9, "vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148137", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1411", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1417", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1471", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1469", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270", "http://www.nessus.org/u?907b8da4", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1418"], "cvelist": ["CVE-2021-1411", "CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471"], "immutableFields": [], "lastseen": "2021-08-05T12:49:47", "history": [], "viewCount": 7, "enchantments": {"dependencies": {"references": [{"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "cve", "idList": ["CVE-2021-1418", "CVE-2021-1411", "CVE-2021-1417", "CVE-2021-1471", "CVE-2021-1469"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/"]}], "modified": "2021-08-05T12:49:47", "rev": 2}, "score": {"value": 7.4, "vector": "NONE", "modified": "2021-08-05T12:49:47", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148137", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148137);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/06/18\");\n\n script_cve_id(\n \"CVE-2021-1411\",\n \"CVE-2021-1417\",\n \"CVE-2021-1418\",\n \"CVE-2021-1469\",\n \"CVE-2021-1471\"\n );\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96073\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96075\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96079\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx36433\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx43270\");\n script_xref(name:\"CISCO-SA\", value:\"cisco-sa-cisco-jabber-PWrTATTC\");\n script_xref(name:\"IAVA\", value:\"2021-A-0142-S\");\n\n script_name(english:\"Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote device is missing a vendor-supplied security patch.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.\");\n # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?907b8da4\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory\");\n script_set_attribute(attribute:\"agent\", value:\"all\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-1411\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/03/26\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:cisco:jabber\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"cisco_jabber_client_installed.nbin\", \"macosx_cisco_jabber_for_mac_installed.nbin\");\n script_require_ports(\"installed_sw/Cisco Jabber for Windows\", \"installed_sw/Cisco Jabber\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nif (get_kb_item('SMB/Registry/Enumerated'))\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber for Windows', win_local:TRUE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.1.5'},\n { 'min_version' : '12.5 ', 'fixed_version' : '12.5.4'},\n { 'min_version' : '12.6 ', 'fixed_version' : '12.6.5'},\n { 'min_version' : '12.7 ', 'fixed_version' : '12.7.4'},\n { 'min_version' : '12.8 ', 'fixed_version' : '12.8.5'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.5'}\n ];\n}\nelse\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber', win_local:FALSE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.8.7'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.6'}\n ];\n}\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Misc.", "cpe": [], "solution": "Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-1411", "vpr": {"risk factor": "Medium", "score": "6.5"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-03-24T00:00:00", "vulnerabilityPublicationDate": "2021-03-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-05T12:49:47", "differentElements": ["cpe"], "edition": 6}, {"bulletin": {"id": "CISCO-SA-CISCO-JABBER-PWRTATTC.NASL", "hash": "67a4219ff82d2024f78aa7e2981b6d42", "type": "nessus", "bulletinFamily": "scanner", "title": "Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)", "description": "According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a remote, authenticated attacker to execute arbitrary programs on the underlying operating system with the privileges of the user account that is running the Cisco Jabber client software or gain access to sensitive information.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.", "published": "2021-03-26T00:00:00", "modified": "2021-06-18T00:00:00", "cvss": {"score": 9, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.9, "vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148137", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1411", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270", "http://www.nessus.org/u?907b8da4", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1471", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1418", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1469", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1417", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073"], "cvelist": ["CVE-2021-1411", "CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471"], "immutableFields": [], "lastseen": "2021-08-06T13:25:31", "history": [], "viewCount": 8, "enchantments": {"dependencies": {"references": [{"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "kaspersky", "idList": ["KLA12132"]}, {"type": "cve", "idList": ["CVE-2021-1469", "CVE-2021-1471", "CVE-2021-1411", "CVE-2021-1417", "CVE-2021-1418"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/"]}], "modified": "2021-08-06T13:25:31", "rev": 2}, "score": {"value": 7.4, "vector": "NONE", "modified": "2021-08-06T13:25:31", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148137", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148137);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/06/18\");\n\n script_cve_id(\n \"CVE-2021-1411\",\n \"CVE-2021-1417\",\n \"CVE-2021-1418\",\n \"CVE-2021-1469\",\n \"CVE-2021-1471\"\n );\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96073\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96075\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96079\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx36433\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx43270\");\n script_xref(name:\"CISCO-SA\", value:\"cisco-sa-cisco-jabber-PWrTATTC\");\n script_xref(name:\"IAVA\", value:\"2021-A-0142-S\");\n\n script_name(english:\"Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote device is missing a vendor-supplied security patch.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.\");\n # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?907b8da4\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory\");\n script_set_attribute(attribute:\"agent\", value:\"all\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-1411\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/03/26\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:cisco:jabber\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"cisco_jabber_client_installed.nbin\", \"macosx_cisco_jabber_for_mac_installed.nbin\");\n script_require_ports(\"installed_sw/Cisco Jabber for Windows\", \"installed_sw/Cisco Jabber\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nif (get_kb_item('SMB/Registry/Enumerated'))\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber for Windows', win_local:TRUE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.1.5'},\n { 'min_version' : '12.5 ', 'fixed_version' : '12.5.4'},\n { 'min_version' : '12.6 ', 'fixed_version' : '12.6.5'},\n { 'min_version' : '12.7 ', 'fixed_version' : '12.7.4'},\n { 'min_version' : '12.8 ', 'fixed_version' : '12.8.5'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.5'}\n ];\n}\nelse\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber', win_local:FALSE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.8.7'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.6'}\n ];\n}\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:cisco:jabber"], "solution": "Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-1411", "vpr": {"risk factor": "Medium", "score": "6.5"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-03-24T00:00:00", "vulnerabilityPublicationDate": "2021-03-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-06T13:25:31", "differentElements": ["nessusSeverity"], "edition": 7}, {"bulletin": {"id": "CISCO-SA-CISCO-JABBER-PWRTATTC.NASL", "hash": "62865314745d11066359f52d614cb286", "type": "nessus", "bulletinFamily": "scanner", "title": "Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)", "description": "According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a remote, authenticated attacker to execute arbitrary programs on the underlying operating system with the privileges of the user account that is running the Cisco Jabber client software or gain access to sensitive information.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.", "published": "2021-03-26T00:00:00", "modified": "2021-06-18T00:00:00", "cvss": {"score": 9, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.9, "vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148137", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1418", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1411", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1469", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1471", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079", "http://www.nessus.org/u?907b8da4", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073"], "cvelist": ["CVE-2021-1411", "CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471"], "immutableFields": [], "lastseen": "2021-08-19T12:03:26", "history": [], "viewCount": 8, "enchantments": {"dependencies": {"references": [{"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "kaspersky", "idList": ["KLA12132"]}, {"type": "cve", "idList": ["CVE-2021-1471", "CVE-2021-1411", "CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/"]}], "modified": "2021-08-19T12:03:26", "rev": 2}, "score": {"value": 7.4, "vector": "NONE", "modified": "2021-08-19T12:03:26", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148137", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148137);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/06/18\");\n\n script_cve_id(\n \"CVE-2021-1411\",\n \"CVE-2021-1417\",\n \"CVE-2021-1418\",\n \"CVE-2021-1469\",\n \"CVE-2021-1471\"\n );\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96073\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96075\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96079\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx36433\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx43270\");\n script_xref(name:\"CISCO-SA\", value:\"cisco-sa-cisco-jabber-PWrTATTC\");\n script_xref(name:\"IAVA\", value:\"2021-A-0142-S\");\n\n script_name(english:\"Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote device is missing a vendor-supplied security patch.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.\");\n # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?907b8da4\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory\");\n script_set_attribute(attribute:\"agent\", value:\"all\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-1411\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/03/26\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:cisco:jabber\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"cisco_jabber_client_installed.nbin\", \"macosx_cisco_jabber_for_mac_installed.nbin\");\n script_require_ports(\"installed_sw/Cisco Jabber for Windows\", \"installed_sw/Cisco Jabber\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nif (get_kb_item('SMB/Registry/Enumerated'))\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber for Windows', win_local:TRUE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.1.5'},\n { 'min_version' : '12.5 ', 'fixed_version' : '12.5.4'},\n { 'min_version' : '12.6 ', 'fixed_version' : '12.6.5'},\n { 'min_version' : '12.7 ', 'fixed_version' : '12.7.4'},\n { 'min_version' : '12.8 ', 'fixed_version' : '12.8.5'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.5'}\n ];\n}\nelse\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber', win_local:FALSE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.8.7'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.6'}\n ];\n}\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:cisco:jabber"], "solution": "Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-1411", "vpr": {"risk factor": "Medium", "score": "6.5"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-03-24T00:00:00", "vulnerabilityPublicationDate": "2021-03-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-19T12:03:26", "differentElements": ["vpr"], "edition": 8}, {"bulletin": {"id": "CISCO-SA-CISCO-JABBER-PWRTATTC.NASL", "hash": "6296af55f4bfb9ccd2b832818fc34ca7", "type": "nessus", "bulletinFamily": "scanner", "title": "Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)", "description": "According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a remote, authenticated attacker to execute arbitrary programs on the underlying operating system with the privileges of the user account that is running the Cisco Jabber client software or gain access to sensitive information.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.", "published": "2021-03-26T00:00:00", "modified": "2021-06-18T00:00:00", "cvss": {"score": 9, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.9, "vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148137", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1411", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1471", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073", "http://www.nessus.org/u?907b8da4", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1418", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1469", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270"], "cvelist": ["CVE-2021-1411", "CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471"], "immutableFields": [], "lastseen": "2021-09-08T23:58:23", "history": [], "viewCount": 8, "enchantments": {"dependencies": {"references": [{"type": "kaspersky", "idList": ["KLA12132"]}, {"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "cve", "idList": ["CVE-2021-1469", "CVE-2021-1417", "CVE-2021-1411", "CVE-2021-1418", "CVE-2021-1471"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/"]}], "modified": "2021-09-08T23:58:23", "rev": 2}, "score": {"value": 7.4, "vector": "NONE", "modified": "2021-09-08T23:58:23", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148137", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148137);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/06/18\");\n\n script_cve_id(\n \"CVE-2021-1411\",\n \"CVE-2021-1417\",\n \"CVE-2021-1418\",\n \"CVE-2021-1469\",\n \"CVE-2021-1471\"\n );\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96073\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96075\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96079\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx36433\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx43270\");\n script_xref(name:\"CISCO-SA\", value:\"cisco-sa-cisco-jabber-PWrTATTC\");\n script_xref(name:\"IAVA\", value:\"2021-A-0142-S\");\n\n script_name(english:\"Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote device is missing a vendor-supplied security patch.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.\");\n # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?907b8da4\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory\");\n script_set_attribute(attribute:\"agent\", value:\"all\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-1411\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/03/26\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:cisco:jabber\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"cisco_jabber_client_installed.nbin\", \"macosx_cisco_jabber_for_mac_installed.nbin\");\n script_require_ports(\"installed_sw/Cisco Jabber for Windows\", \"installed_sw/Cisco Jabber\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nif (get_kb_item('SMB/Registry/Enumerated'))\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber for Windows', win_local:TRUE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.1.5'},\n { 'min_version' : '12.5 ', 'fixed_version' : '12.5.4'},\n { 'min_version' : '12.6 ', 'fixed_version' : '12.6.5'},\n { 'min_version' : '12.7 ', 'fixed_version' : '12.7.4'},\n { 'min_version' : '12.8 ', 'fixed_version' : '12.8.5'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.5'}\n ];\n}\nelse\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber', win_local:FALSE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.8.7'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.6'}\n ];\n}\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:cisco:jabber"], "solution": "Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-1411", "vpr": {"risk factor": "Medium", "score": "6.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-03-24T00:00:00", "vulnerabilityPublicationDate": "2021-03-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-08T23:58:23", "differentElements": ["vpr"], "edition": 9}, {"bulletin": {"id": "CISCO-SA-CISCO-JABBER-PWRTATTC.NASL", "hash": "62865314745d11066359f52d614cb286", "type": "nessus", "bulletinFamily": "scanner", "title": "Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)", "description": "According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a remote, authenticated attacker to execute arbitrary programs on the underlying operating system with the privileges of the user account that is running the Cisco Jabber client software or gain access to sensitive information.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.", "published": "2021-03-26T00:00:00", "modified": "2021-06-18T00:00:00", "cvss": {"score": 9, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.9, "vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148137", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433", "http://www.nessus.org/u?907b8da4", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1418", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1411", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1471", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1469"], "cvelist": ["CVE-2021-1411", "CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471"], "immutableFields": [], "lastseen": "2021-09-14T00:26:09", "history": [], "viewCount": 8, "enchantments": {"dependencies": {"references": [{"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "kaspersky", "idList": ["KLA12132"]}, {"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cve", "idList": ["CVE-2021-1469", "CVE-2021-1418", "CVE-2021-1411", "CVE-2021-1417", "CVE-2021-1471"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/"]}], "modified": "2021-09-14T00:26:09", "rev": 2}, "score": {"value": 7.4, "vector": "NONE", "modified": "2021-09-14T00:26:09", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148137", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148137);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/06/18\");\n\n script_cve_id(\n \"CVE-2021-1411\",\n \"CVE-2021-1417\",\n \"CVE-2021-1418\",\n \"CVE-2021-1469\",\n \"CVE-2021-1471\"\n );\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96073\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96075\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96079\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx36433\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx43270\");\n script_xref(name:\"CISCO-SA\", value:\"cisco-sa-cisco-jabber-PWrTATTC\");\n script_xref(name:\"IAVA\", value:\"2021-A-0142-S\");\n\n script_name(english:\"Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote device is missing a vendor-supplied security patch.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.\");\n # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?907b8da4\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory\");\n script_set_attribute(attribute:\"agent\", value:\"all\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-1411\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/03/26\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:cisco:jabber\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"cisco_jabber_client_installed.nbin\", \"macosx_cisco_jabber_for_mac_installed.nbin\");\n script_require_ports(\"installed_sw/Cisco Jabber for Windows\", \"installed_sw/Cisco Jabber\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nif (get_kb_item('SMB/Registry/Enumerated'))\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber for Windows', win_local:TRUE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.1.5'},\n { 'min_version' : '12.5 ', 'fixed_version' : '12.5.4'},\n { 'min_version' : '12.6 ', 'fixed_version' : '12.6.5'},\n { 'min_version' : '12.7 ', 'fixed_version' : '12.7.4'},\n { 'min_version' : '12.8 ', 'fixed_version' : '12.8.5'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.5'}\n ];\n}\nelse\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber', win_local:FALSE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.8.7'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.6'}\n ];\n}\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:cisco:jabber"], "solution": "Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-1411", "vpr": {"risk factor": "Medium", "score": "6.5"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-03-24T00:00:00", "vulnerabilityPublicationDate": "2021-03-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-14T00:26:09", "differentElements": ["cpe", "cvss"], "edition": 10}, {"bulletin": {"id": "CISCO-SA-CISCO-JABBER-PWRTATTC.NASL", "hash": "65a31a44d4f4ee55b65be0dc2ac6d51d", "type": "nessus", "bulletinFamily": "scanner", "title": "Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)", "description": "According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a remote, authenticated attacker to execute arbitrary programs on the underlying operating system with the privileges of the user account that is running the Cisco Jabber client software or gain access to sensitive information.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.", "published": "2021-03-26T00:00:00", "modified": "2021-06-18T00:00:00", "cvss": {"score": 9, "vector": "CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.9, "vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148137", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1418", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1417", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1411", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1471", "http://www.nessus.org/u?907b8da4", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1469", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079"], "cvelist": ["CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471", "CVE-2021-1411"], "immutableFields": [], "lastseen": "2021-09-16T00:16:02", "history": [], "viewCount": 8, "enchantments": {"dependencies": {"references": [{"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "kaspersky", "idList": ["KLA12132"]}, {"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cve", "idList": ["CVE-2021-1471", "CVE-2021-1411", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1417"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/"]}], "modified": "2021-09-16T00:16:02", "rev": 2}, "score": {"value": 7.4, "vector": "NONE", "modified": "2021-09-16T00:16:02", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148137", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148137);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/06/18\");\n\n script_cve_id(\n \"CVE-2021-1411\",\n \"CVE-2021-1417\",\n \"CVE-2021-1418\",\n \"CVE-2021-1469\",\n \"CVE-2021-1471\"\n );\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96073\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96075\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96079\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx36433\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx43270\");\n script_xref(name:\"CISCO-SA\", value:\"cisco-sa-cisco-jabber-PWrTATTC\");\n script_xref(name:\"IAVA\", value:\"2021-A-0142-S\");\n\n script_name(english:\"Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote device is missing a vendor-supplied security patch.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.\");\n # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?907b8da4\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory\");\n script_set_attribute(attribute:\"agent\", value:\"all\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-1411\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/03/26\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:cisco:jabber\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"cisco_jabber_client_installed.nbin\", \"macosx_cisco_jabber_for_mac_installed.nbin\");\n script_require_ports(\"installed_sw/Cisco Jabber for Windows\", \"installed_sw/Cisco Jabber\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nif (get_kb_item('SMB/Registry/Enumerated'))\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber for Windows', win_local:TRUE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.1.5'},\n { 'min_version' : '12.5 ', 'fixed_version' : '12.5.4'},\n { 'min_version' : '12.6 ', 'fixed_version' : '12.6.5'},\n { 'min_version' : '12.7 ', 'fixed_version' : '12.7.4'},\n { 'min_version' : '12.8 ', 'fixed_version' : '12.8.5'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.5'}\n ];\n}\nelse\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber', win_local:FALSE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.8.7'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.6'}\n ];\n}\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Misc.", "cpe": ["cpe:2.3:a:cisco:jabber:*:*:*:*:*:*:*:*"], "solution": "Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-1411", "vpr": {"risk factor": "Medium", "score": "6.5"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-03-24T00:00:00", "vulnerabilityPublicationDate": "2021-03-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-16T00:16:02", "differentElements": ["cpe", "cvss", "vpr"], "edition": 11}, {"bulletin": {"id": "CISCO-SA-CISCO-JABBER-PWRTATTC.NASL", "hash": "6296af55f4bfb9ccd2b832818fc34ca7", "type": "nessus", "bulletinFamily": "scanner", "title": "Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)", "description": "According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a remote, authenticated attacker to execute arbitrary programs on the underlying operating system with the privileges of the user account that is running the Cisco Jabber client software or gain access to sensitive information.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.", "published": "2021-03-26T00:00:00", "modified": "2021-06-18T00:00:00", "cvss": {"score": 9, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.9, "vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148137", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?907b8da4", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1471", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1411", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1418", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1469", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073"], "cvelist": ["CVE-2021-1411", "CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471"], "immutableFields": [], "lastseen": "2021-09-16T23:57:24", "history": [], "viewCount": 8, "enchantments": {"dependencies": {"references": [{"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "kaspersky", "idList": ["KLA12132"]}, {"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cve", "idList": ["CVE-2021-1471", "CVE-2021-1411", "CVE-2021-1418", "CVE-2021-1417", "CVE-2021-1469"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/"]}], "modified": "2021-09-16T23:57:24", "rev": 2}, "score": {"value": 7.4, "vector": "NONE", "modified": "2021-09-16T23:57:24", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148137", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148137);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/06/18\");\n\n script_cve_id(\n \"CVE-2021-1411\",\n \"CVE-2021-1417\",\n \"CVE-2021-1418\",\n \"CVE-2021-1469\",\n \"CVE-2021-1471\"\n );\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96073\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96075\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96079\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx36433\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx43270\");\n script_xref(name:\"CISCO-SA\", value:\"cisco-sa-cisco-jabber-PWrTATTC\");\n script_xref(name:\"IAVA\", value:\"2021-A-0142-S\");\n\n script_name(english:\"Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote device is missing a vendor-supplied security patch.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.\");\n # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?907b8da4\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory\");\n script_set_attribute(attribute:\"agent\", value:\"all\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-1411\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/03/26\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:cisco:jabber\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"cisco_jabber_client_installed.nbin\", \"macosx_cisco_jabber_for_mac_installed.nbin\");\n script_require_ports(\"installed_sw/Cisco Jabber for Windows\", \"installed_sw/Cisco Jabber\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nif (get_kb_item('SMB/Registry/Enumerated'))\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber for Windows', win_local:TRUE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.1.5'},\n { 'min_version' : '12.5 ', 'fixed_version' : '12.5.4'},\n { 'min_version' : '12.6 ', 'fixed_version' : '12.6.5'},\n { 'min_version' : '12.7 ', 'fixed_version' : '12.7.4'},\n { 'min_version' : '12.8 ', 'fixed_version' : '12.8.5'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.5'}\n ];\n}\nelse\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber', win_local:FALSE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.8.7'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.6'}\n ];\n}\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:cisco:jabber"], "solution": "Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-1411", "vpr": {"risk factor": "Medium", "score": "6.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-03-24T00:00:00", "vulnerabilityPublicationDate": "2021-03-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-16T23:57:24", "differentElements": ["cpe", "cvss"], "edition": 12}, {"bulletin": {"id": "CISCO-SA-CISCO-JABBER-PWRTATTC.NASL", "hash": "3df4e6d7d8b67082843117865191ce2d", "type": "nessus", "bulletinFamily": "scanner", "title": "Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)", "description": "According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a remote, authenticated attacker to execute arbitrary programs on the underlying operating system with the privileges of the user account that is running the Cisco Jabber client software or gain access to sensitive information.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.", "published": "2021-03-26T00:00:00", "modified": "2021-06-18T00:00:00", "cvss": {"score": 9, "vector": "CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.9, "vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148137", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1418", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1417", "http://www.nessus.org/u?907b8da4", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1471", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1469", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1411"], "cvelist": ["CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471", "CVE-2021-1411"], "immutableFields": [], "lastseen": "2021-09-24T11:48:09", "history": [], "viewCount": 8, "enchantments": {"dependencies": {"references": [{"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "kaspersky", "idList": ["KLA12132"]}, {"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cve", "idList": ["CVE-2021-1471", "CVE-2021-1417", "CVE-2021-1469", "CVE-2021-1411", "CVE-2021-1418"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/"]}], "modified": "2021-09-24T11:48:09", "rev": 2}, "score": {"value": 7.4, "vector": "NONE", "modified": "2021-09-24T11:48:09", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148137", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148137);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/06/18\");\n\n script_cve_id(\n \"CVE-2021-1411\",\n \"CVE-2021-1417\",\n \"CVE-2021-1418\",\n \"CVE-2021-1469\",\n \"CVE-2021-1471\"\n );\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96073\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96075\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96079\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx36433\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx43270\");\n script_xref(name:\"CISCO-SA\", value:\"cisco-sa-cisco-jabber-PWrTATTC\");\n script_xref(name:\"IAVA\", value:\"2021-A-0142-S\");\n\n script_name(english:\"Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote device is missing a vendor-supplied security patch.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.\");\n # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?907b8da4\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory\");\n script_set_attribute(attribute:\"agent\", value:\"all\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-1411\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/03/26\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:cisco:jabber\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"cisco_jabber_client_installed.nbin\", \"macosx_cisco_jabber_for_mac_installed.nbin\");\n script_require_ports(\"installed_sw/Cisco Jabber for Windows\", \"installed_sw/Cisco Jabber\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nif (get_kb_item('SMB/Registry/Enumerated'))\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber for Windows', win_local:TRUE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.1.5'},\n { 'min_version' : '12.5 ', 'fixed_version' : '12.5.4'},\n { 'min_version' : '12.6 ', 'fixed_version' : '12.6.5'},\n { 'min_version' : '12.7 ', 'fixed_version' : '12.7.4'},\n { 'min_version' : '12.8 ', 'fixed_version' : '12.8.5'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.5'}\n ];\n}\nelse\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber', win_local:FALSE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.8.7'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.6'}\n ];\n}\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Misc.", "cpe": ["cpe:2.3:a:cisco:jabber:*:*:*:*:*:*:*:*"], "solution": "Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-1411", "vpr": {"risk factor": "Medium", "score": "6.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-03-24T00:00:00", "vulnerabilityPublicationDate": "2021-03-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-24T11:48:09", "differentElements": ["cpe", "cvss", "vpr"], "edition": 13}, {"bulletin": {"id": "CISCO-SA-CISCO-JABBER-PWRTATTC.NASL", "hash": "30b0d15065e55060e09534015497b846", "type": "nessus", "bulletinFamily": "scanner", "title": "Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)", "description": "According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a remote, authenticated attacker to execute arbitrary programs on the underlying operating system with the privileges of the user account that is running the Cisco Jabber client software or gain access to sensitive information.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.", "published": "2021-03-26T00:00:00", "modified": "2021-06-18T00:00:00", "cvss": {"score": 9, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.9, "vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148137", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1418", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1411", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1469", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075", "http://www.nessus.org/u?907b8da4", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1471", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433"], "cvelist": ["CVE-2021-1411", "CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471"], "immutableFields": [], "lastseen": "2021-10-06T00:16:09", "history": [], "viewCount": 8, "enchantments": {"dependencies": {"references": [{"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "kaspersky", "idList": ["KLA12132"]}, {"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cve", "idList": ["CVE-2021-1471", "CVE-2021-1417", "CVE-2021-1469", "CVE-2021-1411", "CVE-2021-1418"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/"]}], "modified": "2021-09-24T11:48:09", "rev": 2}, "score": {"value": 7.4, "vector": "NONE", "modified": "2021-09-24T11:48:09", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148137", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148137);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/06/18\");\n\n script_cve_id(\n \"CVE-2021-1411\",\n \"CVE-2021-1417\",\n \"CVE-2021-1418\",\n \"CVE-2021-1469\",\n \"CVE-2021-1471\"\n );\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96073\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96075\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96079\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx36433\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx43270\");\n script_xref(name:\"CISCO-SA\", value:\"cisco-sa-cisco-jabber-PWrTATTC\");\n script_xref(name:\"IAVA\", value:\"2021-A-0142-S\");\n\n script_name(english:\"Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote device is missing a vendor-supplied security patch.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.\");\n # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?907b8da4\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory\");\n script_set_attribute(attribute:\"agent\", value:\"all\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-1411\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/03/26\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:cisco:jabber\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"cisco_jabber_client_installed.nbin\", \"macosx_cisco_jabber_for_mac_installed.nbin\");\n script_require_ports(\"installed_sw/Cisco Jabber for Windows\", \"installed_sw/Cisco Jabber\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nif (get_kb_item('SMB/Registry/Enumerated'))\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber for Windows', win_local:TRUE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.1.5'},\n { 'min_version' : '12.5 ', 'fixed_version' : '12.5.4'},\n { 'min_version' : '12.6 ', 'fixed_version' : '12.6.5'},\n { 'min_version' : '12.7 ', 'fixed_version' : '12.7.4'},\n { 'min_version' : '12.8 ', 'fixed_version' : '12.8.5'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.5'}\n ];\n}\nelse\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber', win_local:FALSE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.8.7'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.6'}\n ];\n}\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:cisco:jabber"], "solution": "Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-1411", "vpr": {"risk factor": "High", "score": "7.3"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-03-24T00:00:00", "vulnerabilityPublicationDate": "2021-03-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-10-06T00:16:09", "differentElements": ["vpr"], "edition": 14}, {"bulletin": {"id": "CISCO-SA-CISCO-JABBER-PWRTATTC.NASL", "hash": "62865314745d11066359f52d614cb286", "type": "nessus", "bulletinFamily": "scanner", "title": "Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)", "description": "According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a remote, authenticated attacker to execute arbitrary programs on the underlying operating system with the privileges of the user account that is running the Cisco Jabber client software or gain access to sensitive information.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.", "published": "2021-03-26T00:00:00", "modified": "2021-06-18T00:00:00", "cvss": {"score": 9, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.9, "vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148137", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1469", "http://www.nessus.org/u?907b8da4", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1471", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1411", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1418"], "cvelist": ["CVE-2021-1411", "CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471"], "immutableFields": [], "lastseen": "2021-10-07T00:14:39", "history": [], "viewCount": 8, "enchantments": {"dependencies": {"references": [{"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "kaspersky", "idList": ["KLA12132"]}, {"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cve", "idList": ["CVE-2021-1471", "CVE-2021-1417", "CVE-2021-1469", "CVE-2021-1411", "CVE-2021-1418"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/"]}], "modified": "2021-09-24T11:48:09", "rev": 2}, "score": {"value": 7.4, "vector": "NONE", "modified": "2021-09-24T11:48:09", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148137", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148137);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/06/18\");\n\n script_cve_id(\n \"CVE-2021-1411\",\n \"CVE-2021-1417\",\n \"CVE-2021-1418\",\n \"CVE-2021-1469\",\n \"CVE-2021-1471\"\n );\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96073\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96075\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96079\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx36433\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx43270\");\n script_xref(name:\"CISCO-SA\", value:\"cisco-sa-cisco-jabber-PWrTATTC\");\n script_xref(name:\"IAVA\", value:\"2021-A-0142-S\");\n\n script_name(english:\"Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote device is missing a vendor-supplied security patch.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.\");\n # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?907b8da4\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory\");\n script_set_attribute(attribute:\"agent\", value:\"all\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-1411\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/03/26\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:cisco:jabber\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"cisco_jabber_client_installed.nbin\", \"macosx_cisco_jabber_for_mac_installed.nbin\");\n script_require_ports(\"installed_sw/Cisco Jabber for Windows\", \"installed_sw/Cisco Jabber\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nif (get_kb_item('SMB/Registry/Enumerated'))\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber for Windows', win_local:TRUE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.1.5'},\n { 'min_version' : '12.5 ', 'fixed_version' : '12.5.4'},\n { 'min_version' : '12.6 ', 'fixed_version' : '12.6.5'},\n { 'min_version' : '12.7 ', 'fixed_version' : '12.7.4'},\n { 'min_version' : '12.8 ', 'fixed_version' : '12.8.5'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.5'}\n ];\n}\nelse\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber', win_local:FALSE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.8.7'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.6'}\n ];\n}\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:cisco:jabber"], "solution": "Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-1411", "vpr": {"risk factor": "Medium", "score": "6.5"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-03-24T00:00:00", "vulnerabilityPublicationDate": "2021-03-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-10-07T00:14:39", "differentElements": ["vpr"], "edition": 15}, {"bulletin": {"id": "CISCO-SA-CISCO-JABBER-PWRTATTC.NASL", "hash": "6296af55f4bfb9ccd2b832818fc34ca7", "type": "nessus", "bulletinFamily": "scanner", "title": "Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)", "description": "According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a remote, authenticated attacker to execute arbitrary programs on the underlying operating system with the privileges of the user account that is running the Cisco Jabber client software or gain access to sensitive information.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.", "published": "2021-03-26T00:00:00", "modified": "2021-06-18T00:00:00", "cvss": {"score": 9, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.9, "vector": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148137", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1418", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1471", "http://www.nessus.org/u?907b8da4", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1417", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1411", "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1469"], "cvelist": ["CVE-2021-1411", "CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471"], "immutableFields": [], "lastseen": "2021-10-11T11:49:42", "history": [], "viewCount": 8, "enchantments": {"dependencies": {"references": [{"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "kaspersky", "idList": ["KLA12132"]}, {"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cve", "idList": ["CVE-2021-1418", "CVE-2021-1417", "CVE-2021-1469", "CVE-2021-1411", "CVE-2021-1471"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/"]}], "modified": "2021-10-11T11:49:42", "rev": 2}, "score": {"value": 7.4, "vector": "NONE", "modified": "2021-10-11T11:49:42", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148137", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148137);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/06/18\");\n\n script_cve_id(\n \"CVE-2021-1411\",\n \"CVE-2021-1417\",\n \"CVE-2021-1418\",\n \"CVE-2021-1469\",\n \"CVE-2021-1471\"\n );\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96073\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96075\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96079\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx36433\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx43270\");\n script_xref(name:\"CISCO-SA\", value:\"cisco-sa-cisco-jabber-PWrTATTC\");\n script_xref(name:\"IAVA\", value:\"2021-A-0142-S\");\n\n script_name(english:\"Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote device is missing a vendor-supplied security patch.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.\");\n # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?907b8da4\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory\");\n script_set_attribute(attribute:\"agent\", value:\"all\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-1411\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/03/26\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:cisco:jabber\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"cisco_jabber_client_installed.nbin\", \"macosx_cisco_jabber_for_mac_installed.nbin\");\n script_require_ports(\"installed_sw/Cisco Jabber for Windows\", \"installed_sw/Cisco Jabber\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nif (get_kb_item('SMB/Registry/Enumerated'))\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber for Windows', win_local:TRUE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.1.5'},\n { 'min_version' : '12.5 ', 'fixed_version' : '12.5.4'},\n { 'min_version' : '12.6 ', 'fixed_version' : '12.6.5'},\n { 'min_version' : '12.7 ', 'fixed_version' : '12.7.4'},\n { 'min_version' : '12.8 ', 'fixed_version' : '12.8.5'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.5'}\n ];\n}\nelse\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber', win_local:FALSE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.8.7'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.6'}\n ];\n}\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:cisco:jabber"], "solution": "Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-1411", "vpr": {"risk factor": "Medium", "score": "6.7"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-03-24T00:00:00", "vulnerabilityPublicationDate": "2021-03-24T00:00:00", "exploitableWith": []}, "lastseen": "2021-10-11T11:49:42", "differentElements": ["vpr"], "edition": 16}], "viewCount": 9, "enchantments": {"dependencies": {"references": [{"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "kaspersky", "idList": ["KLA12132"]}, {"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cve", "idList": ["CVE-2021-1469", "CVE-2021-1417", "CVE-2021-1471", "CVE-2021-1411", "CVE-2021-1418"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/"]}], "modified": "2021-10-12T23:48:45", "rev": 2}, "score": {"value": 7.4, "vector": "NONE", "modified": "2021-10-12T23:48:45", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148137", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148137);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/06/18\");\n\n script_cve_id(\n \"CVE-2021-1411\",\n \"CVE-2021-1417\",\n \"CVE-2021-1418\",\n \"CVE-2021-1469\",\n \"CVE-2021-1471\"\n );\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96073\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96075\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvw96079\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx36433\");\n script_xref(name:\"CISCO-BUG-ID\", value:\"CSCvx43270\");\n script_xref(name:\"CISCO-SA\", value:\"cisco-sa-cisco-jabber-PWrTATTC\");\n script_xref(name:\"IAVA\", value:\"2021-A-0142-S\");\n\n script_name(english:\"Cisco Jabber Multiple Vulnerabilities (cisco-sa-cisco-jabber-PWrTATTC)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote device is missing a vendor-supplied security patch.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its self-reported version, Cisco Jabber is affected by multiple vulnerabilities which could allow a \nremote, authenticated attacker to execute arbitrary programs on the underlying operating system with the\nprivileges of the user account that is running the Cisco Jabber client software or gain access to sensitive\ninformation.\n\nPlease see the included Cisco BIDs and Cisco Security Advisory for more information.\");\n # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?907b8da4\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96073\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96075\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw96079\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx36433\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx43270\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory\");\n script_set_attribute(attribute:\"agent\", value:\"all\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-1411\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/03/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/03/26\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:cisco:jabber\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"cisco_jabber_client_installed.nbin\", \"macosx_cisco_jabber_for_mac_installed.nbin\");\n script_require_ports(\"installed_sw/Cisco Jabber for Windows\", \"installed_sw/Cisco Jabber\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nif (get_kb_item('SMB/Registry/Enumerated'))\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber for Windows', win_local:TRUE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.1.5'},\n { 'min_version' : '12.5 ', 'fixed_version' : '12.5.4'},\n { 'min_version' : '12.6 ', 'fixed_version' : '12.6.5'},\n { 'min_version' : '12.7 ', 'fixed_version' : '12.7.4'},\n { 'min_version' : '12.8 ', 'fixed_version' : '12.8.5'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.5'}\n ];\n}\nelse\n{\n app_info = vcf::get_app_info(app:'Cisco Jabber', win_local:FALSE);\n\n constraints = [\n { 'min_version' : '0.0 ', 'fixed_version' : '12.8.7'},\n { 'min_version' : '12.9 ', 'fixed_version' : '12.9.6'}\n ];\n}\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:cisco:jabber"], "solution": "Upgrade to the relevant fixed version referenced in the relevant Cisco Security Advisory", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-1411", "vpr": {"risk factor": "High", "score": "7.3"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-03-24T00:00:00", "vulnerabilityPublicationDate": "2021-03-24T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}], "kaspersky": [{"id": "KLA12132", "hash": "afbfccfe67dde8ecd055df4c162ce552", "type": "kaspersky", "bulletinFamily": "info", "title": "KLA12132 Multiple vulnerabilities in Cisco Jabber", "description": "### *Detect date*:\n03/23/2021\n\n### *Severity*:\nCritical\n\n### *Description*:\nMultiple vulnerabilities were found in Cisco Jabber. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information.\n\n### *Affected products*:\nCisco Jabber earlier than 12.1.5 \nCisco Jabber 12.5 earlier than 12.5.4 \nCisco Jabber 12.6 earlier than 12.6.5 \nCisco Jabber 12.7 earlier than 12.7.4 \nCisco Jabber 12.8 earlier than 12.8.5 \nCisco Jabber 12.9 earlier than 12.9.5\n\n### *Solution*:\nUpdate to the latest version \n[Download Cisco Jabber](<https://www.webex.com/downloads/jabber.html>)\n\n### *Original advisories*:\n[Cisco Jabber Desktop and Mobile Client Software Vulnerabilities](<https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC>) \n\n\n### *Impacts*:\nACE \n\n### *Related products*:\n[Cisco Jabber](<https://threats.kaspersky.com/en/product/Cisco-Jabber/>)\n\n### *CVE-IDS*:\n[CVE-2021-1411](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1411>)9.0Critical \n[CVE-2021-1418](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1418>)4.0Warning \n[CVE-2021-1471](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1471>)6.8High \n[CVE-2021-1417](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1417>)4.0Warning \n[CVE-2021-1469](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1469>)6.5High", "published": "2021-03-23T00:00:00", "modified": "2021-04-22T00:00:00", "cvss": {"score": 9.0, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 9.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.9, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 6.0}, "href": "https://threats.kaspersky.com/en/vulnerability/KLA12132/", "reporter": "Kaspersky Lab", "references": ["https://www.webex.com/downloads/jabber.html", "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC", "https://threats.kaspersky.com/en/product/Cisco-Jabber/", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1411", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1418", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1471", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1417", "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1469", "https://statistics.securelist.com/vulnerability-scan/month"], "cvelist": ["CVE-2021-1411", "CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471"], "immutableFields": [], "lastseen": "2021-08-18T10:57:13", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "nessus", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"]}, {"type": "cve", "idList": ["CVE-2021-1469", "CVE-2021-1471", "CVE-2021-1411", "CVE-2021-1417", "CVE-2021-1418"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/"]}], "modified": "2021-08-18T10:57:13", "rev": 2}, "score": {"value": 6.6, "vector": "NONE", "modified": "2021-08-18T10:57:13", "rev": 2}}, "objectVersion": "1.6", "_object_type": "robots.models.kaspersky.KasperskyBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.kaspersky.KasperskyBulletin"]}], "thn": [{"id": "THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB", "hash": "4f37a34439fa3991da6faf137e3941fa", "type": "thn", "bulletinFamily": "info", "title": "Critical Cisco Jabber Bug Could Let Attackers Hack Remote Systems", "description": "[](<https://thehackernews.com/images/-XwDv7U2sWJ8/YFxbsEmg0pI/AAAAAAAACGA/ZaH-loK8Uy8wbGthtq1Odot5s8ChWzSyQCLcBGAsYHQ/s0/cisco.jpg>)\n\nCisco on Wednesday released software updates to address multiple vulnerabilities affecting its Jabber messaging clients across Windows, macOS, Android, and iOS.\n\nSuccessful exploitation of the flaws could permit an \"attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition,\" the networking major [said](<https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC>) in an advisory.\n\nThe issues concern a total of five security vulnerabilities, three of which (CVE-2021-1411, CVE-2021-1417, and CVE-2021-1418) were reported to the company by Olav Sortland Thoresen of Watchcom, with two others (CVE-2021-1469 and CVE-2021-1471) uncovered during internal security testing.\n\nCisco notes that the flaws are not dependent on one another, and that exploitation of any one of the vulnerabilities doesn't hinge on the exploitation of another. But in order to do this, an attacker needs to be authenticated to an Extensible Messaging and Presence Protocol (XMPP) server running the vulnerable software, as well as be able to send XMPP messages.\n\n**CVE-2021-1411**, which concerns an arbitrary program execution vulnerability in its Windows app, is also the most critical, with a CVSS score of 9.9 out of a maximum of 10. According to Cisco, the flaw is due to improper validation of message content, thus making it possible for an attacker to send specially-crafted XMPP messages to the vulnerable client and execute arbitrary code with the same privileges as that of the user account running the software.\n\n[](<https://thehackernews.com/images/-WCPBQnzA_CI/YFxew4FX1pI/AAAAAAAA3ts/HLdZBhRLWdEHkXJ6_PM9RqNBsYfq3XaywCLcBGAsYHQ/s0/cisco.jpg>)\n\nBesides CVE-2021-1411, four other Jabber flaws have also been fixed by Cisco, counting \u2014\n\n * **CVE-2021-1469** (Windows) - An issue with improper validation of message content that could result in arbitrary code execution.\n * **CVE-2021-1417** (Windows) - A failure to validate message content that could be leveraged to leak sensitive information, which can then fuel further attacks.\n * **CVE-2021-1471** (Windows, macOS, Android, iOS) - A certificate validation vulnerability that could be abused to intercept network requests and even modify connections between the Jabber client and a server\n * **CVE-2021-1418** (Windows, macOS, Android, iOS) - An issue arising from improper validation of message content that could be exploited by sending crafted XMPP messages to cause a denial-of-service (DoS) condition.\n\nThis is far from the first time Norwegian cybersecurity firm Watchcom has uncovered flaws in Jabber clients. In September 2020, Cisco [resolved four flaws](<https://thehackernews.com/2020/09/cisco-jabber-hacking.html>) in its Windows app that could permit an authenticated, remote attacker to execute arbitrary code. But after three of the four vulnerabilities were not \"sufficiently mitigated,\" the company ended up releasing a [second round of patches](<https://thehackernews.com/2020/12/cisco-reissues-patches-for-critical.html>) in December.\n\nIn addition to the fix for Jabber, Cisco has also published [37 other advisories](<https://tools.cisco.com/security/center/Search.x?publicationTypeIDs=1&firstPublishedStartDate=2021%2F03%2F24&firstPublishedEndDate=2021%2F03%2F24>) that go into detail about security updates for a number of medium and high severity issues affecting various Cisco products.\n\n \n\n\nFound this article interesting? Follow THN on [Facebook](<https://www.facebook.com/thehackernews>), [Twitter _\uf099_](<https://twitter.com/thehackersnews>) and [LinkedIn](<https://www.linkedin.com/company/thehackernews/>) to read more exclusive content we post.\n", "published": "2021-03-25T09:50:00", "modified": "2021-03-26T03:48:20", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://thehackernews.com/2021/03/critical-cisco-jabber-bug-could-let.html", "reporter": "The Hacker News", "references": [], "cvelist": ["CVE-2021-1411", "CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471"], "lastseen": "2021-03-26T05:08:29", "history": [{"bulletin": {"id": "THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB", "hash": "7553e208c542438f04c6b8c312ad12a4", "type": "thn", "bulletinFamily": "info", "title": "Critical Cisco Jabber Bug Could Let Attackers Hack Remote Systems", "description": "[](<https://thehackernews.com/images/-XwDv7U2sWJ8/YFxbsEmg0pI/AAAAAAAACGA/ZaH-loK8Uy8wbGthtq1Odot5s8ChWzSyQCLcBGAsYHQ/s0/cisco.jpg>)\n\nCisco on Wednesday released software updates to address multiple vulnerabilities affecting its Jabber messaging clients across Windows, macOS, Android, and iOS.\n\nSuccessful exploitation of the flaws could permit an \"attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition,\" the networking major [said](<https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC>) in an advisory.\n\nThe issues concern a total of five security vulnerabilities, three of which (CVE-2021-1411, CVE-2021-1417, and CVE-2021-1418) were reported to the company by Olav Sortland Thoresen of Watchcom, with two others (CVE-2021-1469 and CVE-2021-1471) uncovered during internal security testing.\n\nCisco notes that the flaws are not dependent on one another, and that exploitation of any one of the vulnerabilities doesn't hinge on the exploitation of another. But in order to do this, an attacker needs to be authenticated to an Extensible Messaging and Presence Protocol (XMPP) server running the vulnerable software, as well as be able to send XMPP messages.\n\n**CVE-2021-1411**, which concerns an arbitrary program execution vulnerability in its Windows app, is also the most critical, with a CVSS score of 9.9 out of a maximum of 10. According to Cisco, the flaw is due to improper validation of message content, thus making it possible for an attacker to send specially-crafted XMPP messages to the vulnerable client and execute arbitrary code with the same privileges as that of the user account running the software.\n\n[](<https://thehackernews.com/images/-WCPBQnzA_CI/YFxew4FX1pI/AAAAAAAA3ts/HLdZBhRLWdEHkXJ6_PM9RqNBsYfq3XaywCLcBGAsYHQ/s0/cisco.jpg>)\n\nBesides CVE-2021-1411, four other Jabber flaws have also been fixed by Cisco, counting \u2014\n\n * **CVE-2021-1469** (Windows) - An issue with improper validation of message content that could result in arbitrary code execution.\n * **CVE-2021-1417** (Windows) - A failure to validate message content that could be leveraged to leak sensitive information, which can then fuel further attacks.\n * **CVE-2021-1471** (Windows, macOS, Android, iOS) - A certificate validation vulnerability that could be abused to intercept network requests and even modify connections between the Jabber client and a server\n * **CVE-2021-1418** (Windows, macOS, Android, iOS) - An issue arising from improper validation of message content that could be exploited by sending crafted XMPP messages to cause a denial-of-service (DoS) condition.\n\nThis is far from the first time Norwegian cybersecurity firm Watchcom has uncovered flaws in Jabber clients. In September 2020, Cisco [resolved four flaws](<https://thehackernews.com/2020/09/cisco-jabber-hacking.html>) in its Windows app that could permit an authenticated, remote attacker to execute arbitrary code. But after three of the four vulnerabilities were not \"sufficiently mitigated,\" the company ended up releasing the [second round of patches](<https://thehackernews.com/2020/12/cisco-reissues-patches-for-critical.html>) in December.\n\nIn addition to the fix for Jabber, Cisco has also published [37 other advisories](<https://tools.cisco.com/security/center/Search.x?publicationTypeIDs=1&firstPublishedStartDate=2021%2F03%2F24&firstPublishedEndDate=2021%2F03%2F24>) that go into detail about security updates for a number of medium and high severity security issues affecting various Cisco products.\n\n \n\n\nFound this article interesting? Follow THN on [Facebook](<https://www.facebook.com/thehackernews>), [Twitter _\uf099_](<https://twitter.com/thehackersnews>) and [LinkedIn](<https://www.linkedin.com/company/thehackernews/>) to read more exclusive content we post.\n", "published": "2021-03-25T09:50:00", "modified": "2021-03-25T09:58:36", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://thehackernews.com/2021/03/critical-cisco-jabber-bug-could-let.html", "reporter": "The Hacker News", "references": [], "cvelist": ["CVE-2021-1411", "CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1469", "CVE-2021-1471"], "lastseen": "2021-03-25T10:37:40", "history": [], "viewCount": 35, "enchantments": {"dependencies": {"references": [{"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "cve", "idList": ["CVE-2021-1469", "CVE-2021-1417", "CVE-2021-1418", "CVE-2021-1471", "CVE-2021-1411"]}], "modified": "2021-03-25T10:37:40", "rev": 2}, "score": {"value": 6.2, "vector": "NONE", "modified": "2021-03-25T10:37:40", "rev": 2}}, "objectVersion": "1.4"}, "lastseen": "2021-03-25T10:37:40", "differentElements": ["description", "modified"], "edition": 1}], "viewCount": 76, "enchantments": {"dependencies": {"references": [{"type": "kaspersky", "idList": ["KLA12132"]}, {"type": "nessus", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"]}, {"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "cve", "idList": ["CVE-2021-1469", "CVE-2021-1471", "CVE-2021-1411", "CVE-2021-1417", "CVE-2021-1418"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/", "MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/"]}], "modified": "2021-03-26T05:08:29", "rev": 2}, "score": {"value": 6.1, "vector": "NONE", "modified": "2021-03-26T05:08:29", "rev": 2}}, "objectVersion": "1.5", "_object_type": "robots.models.thn.ThnBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.thn.ThnBulletin"], "immutableFields": [], "cvss2": {}, "cvss3": {}}], "cve": [{"id": "CVE-2021-1411", "bulletinFamily": "NVD", "title": "CVE-2021-1411", "description": "Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.", "published": "2021-03-24T21:15:00", "modified": "2021-03-29T17:32:00", "cvss": {"score": 9.0, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1411", "reporter": "psirt@cisco.com", "references": ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"], "cvelist": ["CVE-2021-1411"], "type": "cve", "lastseen": "2021-04-28T11:49:15", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.8.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.7.4"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.6.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.1.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.5.4"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.9.5"}], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.6.5:*:*:*:*:windows:*:*", "versionEndExcluding": "12.6.5", "versionStartIncluding": "12.6.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.5.4:*:*:*:*:windows:*:*", "versionEndExcluding": "12.5.4", "versionStartIncluding": "12.5.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.8.5:*:*:*:*:windows:*:*", "versionEndExcluding": "12.8.5", "versionStartIncluding": "12.8.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.5:*:*:*:*:windows:*:*", "versionEndExcluding": "12.9.5", "versionStartIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.1.5:*:*:*:*:windows:*:*", "versionEndExcluding": "12.1.5", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.7.4:*:*:*:*:windows:*:*", "versionEndExcluding": "12.7.4", "versionStartIncluding": "12.7.0", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-1411"], "cvss": {"score": 9.0, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 9.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.9, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 6.0}, "cwe": ["CWE-170"], "description": "Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.", "edition": 2, "enchantments": {"dependencies": {"modified": "2021-03-30T12:45:28", "references": [{"idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"], "type": "thn"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"], "type": "cisco"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2021-03-30T12:45:28", "rev": 2, "value": 4.4, "vector": "NONE"}, "twitter": {"counter": 8, "modified": "2021-03-25T12:44:21", "tweets": [{"link": "https://twitter.com/ipssignatures/status/1375463555500228612", "text": "The vuln CVE-2021-1411 has a tweet created 0 days ago and retweeted 8 times.\n/elhackernet/status/1375407693372985344\n/hashtag/Sn5lgc535vtdhu?src=hashtag_click"}, {"link": "https://twitter.com/CVEannounce/status/1375463300721442821", "text": "CVE-2021-1411, CVE-2021-1417, CVE-2021-1418, CVE-2021-1469, CVE-2021-1471"}, {"link": "https://twitter.com/riftsec/status/1375102842793562123", "text": "Video konferans yaz\u0131l\u0131m\u0131 Cisco Jabber'da CVE-2021-1411, CVE-2021-1417, CVE-2021-1469 kodlu kritik zafiyet tespit edilmi\u015ftir. \u0130leti i\u00e7eri\u011finin yanl\u0131\u015f do\u011frulanmas\u0131ndan kaynaklanan zafiyet, sald\u0131rgan\u0131n hedef sistemde uzaktan komut y\u00fcr\u00fctmesine izin vermektedir."}, {"link": "https://twitter.com/eyalestrin/status/1375705156159963137", "text": "Cisco Jabber Desktop and Mobile Client Software Vulnerabilities (CVE-2021-1411, CVE-2021-1417, CVE-2021-1418)"}, {"link": "https://twitter.com/autumn_good_35/status/1375064226352427009", "text": "XMPP\u30e1\u30c3\u30bb\u30fc\u30b8\u3092\u9001\u308c\u308b\u3053\u3068\u304c\u6761\u4ef6\n\n\u300eallow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges,\u300f\n\nCVE-2021-1411\nCVE-2021-1417\nCVE-2021-1418\nCisco Jabber Desktop and Mobile Client Software Vulnerabilities\nhttps://t.co/9pFX4Gcn69?amp=1"}, {"link": "https://twitter.com/autumn_good_35/status/1375064226352427009", "text": "XMPP\u30e1\u30c3\u30bb\u30fc\u30b8\u3092\u9001\u308c\u308b\u3053\u3068\u304c\u6761\u4ef6\n\n\u300eallow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges,\u300f\n\nCVE-2021-1411\nCVE-2021-1417\nCVE-2021-1418\nCisco Jabber Desktop and Mobile Client Software Vulnerabilities\nhttps://t.co/9pFX4Gcn69?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1376595109765070849", "text": " NEW: CVE-2021-1411 Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying op... (click for more) Severity: CRITICAL https://t.co/wXPjE30z03?amp=1"}, {"link": "https://twitter.com/ipssignatures/status/1375463554736881666", "text": "I know no IPS that has a protection/signature/rule for the vulnerability CVE-2021-1411.\nThe vuln was published 1 days ago by NIST.\n/search?src=sprv&q=CVE-2021-1411\n/hashtag/Sn5lgc535vtdhu?src=hashtag_click"}]}}, "extraReferences": [{"name": "20210324 Cisco Jabber Desktop and Mobile Client Software Vulnerabilities", "refsource": "CISCO", "tags": ["Vendor Advisory"], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"}], "hash": "d5fa76cda6aa57082e71d0b36d5465f0a3e5c7e5045ac60340fdb82fc4498ec9", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "8d4ce015e6c41f5b47f0613eef7b9df4", "key": "cpeConfiguration"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "0fd1a7fbb160b2eb8ae15a82ea1321ad", "key": "extraReferences"}, {"hash": "7176696c4f29688f6933f5cf8dc58049", "key": "cwe"}, {"hash": "c21ac9a283bfec2faf0f218c9d7be1da", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "9a703ca9a59fd0b365fc45a1b4133e33", "key": "description"}, {"hash": "dabc2f71ed734a3bbd94fbda365274df", "key": "title"}, {"hash": "914859e1ddc65cafb101f901efb17ccc", "key": "published"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "62e86bb7716385cd46817416916a7bbd", "key": "cvss"}, {"hash": "2952a68761c310aaa2a72db661e58908", "key": "href"}, {"hash": "a03581803e42a00618e0226e44de0e32", "key": "affectedSoftware"}, {"hash": "326bb90a9de8254bb7b400e76890967f", "key": "cvss2"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "b0b0bcd0f28ac63fe980c5964ddd8a20", "key": "references"}, {"hash": "f93d254aafa3092ea754b1e134c92d15", "key": "cvss3"}, {"hash": "dfafb65575baec531c41a462fb64ca83", "key": "cvelist"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1411", "id": "CVE-2021-1411", "immutableFields": [], "lastseen": "2021-03-30T12:45:28", "modified": "2021-03-29T17:32:00", "objectVersion": "1.5", "published": "2021-03-24T21:15:00", "references": ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"], "reporter": "cve@mitre.org", "title": "CVE-2021-1411", "type": "cve", "viewCount": 20}, "different_elements": ["reporter", "cpeConfiguration"], "edition": 2, "lastseen": "2021-03-30T12:45:28"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "cvelist": ["CVE-2021-1411"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": ["CWE-170"], "description": "Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-03-25T12:44:21", "references": [{"idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"], "type": "thn"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"], "type": "cisco"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2021-03-25T12:44:21", "rev": 2, "value": 4.4, "vector": "NONE"}, "twitter": {"counter": 8, "modified": "2021-03-25T12:44:21", "tweets": [{"link": "https://twitter.com/ipssignatures/status/1375463555500228612", "text": "The vuln CVE-2021-1411 has a tweet created 0 days ago and retweeted 8 times.\n/elhackernet/status/1375407693372985344\n/hashtag/Sn5lgc535vtdhu?src=hashtag_click"}, {"link": "https://twitter.com/CVEannounce/status/1375463300721442821", "text": "CVE-2021-1411, CVE-2021-1417, CVE-2021-1418, CVE-2021-1469, CVE-2021-1471"}, {"link": "https://twitter.com/riftsec/status/1375102842793562123", "text": "Video konferans yaz\u0131l\u0131m\u0131 Cisco Jabber'da CVE-2021-1411, CVE-2021-1417, CVE-2021-1469 kodlu kritik zafiyet tespit edilmi\u015ftir. \u0130leti i\u00e7eri\u011finin yanl\u0131\u015f do\u011frulanmas\u0131ndan kaynaklanan zafiyet, sald\u0131rgan\u0131n hedef sistemde uzaktan komut y\u00fcr\u00fctmesine izin vermektedir."}, {"link": "https://twitter.com/eyalestrin/status/1375705156159963137", "text": "Cisco Jabber Desktop and Mobile Client Software Vulnerabilities (CVE-2021-1411, CVE-2021-1417, CVE-2021-1418)"}, {"link": "https://twitter.com/autumn_good_35/status/1375064226352427009", "text": "XMPP\u30e1\u30c3\u30bb\u30fc\u30b8\u3092\u9001\u308c\u308b\u3053\u3068\u304c\u6761\u4ef6\n\n\u300eallow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges,\u300f\n\nCVE-2021-1411\nCVE-2021-1417\nCVE-2021-1418\nCisco Jabber Desktop and Mobile Client Software Vulnerabilities\nhttps://t.co/9pFX4Gcn69?amp=1"}, {"link": "https://twitter.com/autumn_good_35/status/1375064226352427009", "text": "XMPP\u30e1\u30c3\u30bb\u30fc\u30b8\u3092\u9001\u308c\u308b\u3053\u3068\u304c\u6761\u4ef6\n\n\u300eallow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges,\u300f\n\nCVE-2021-1411\nCVE-2021-1417\nCVE-2021-1418\nCisco Jabber Desktop and Mobile Client Software Vulnerabilities\nhttps://t.co/9pFX4Gcn69?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1376595109765070849", "text": " NEW: CVE-2021-1411 Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying op... (click for more) Severity: CRITICAL https://t.co/wXPjE30z03?amp=1"}, {"link": "https://twitter.com/ipssignatures/status/1375463554736881666", "text": "I know no IPS that has a protection/signature/rule for the vulnerability CVE-2021-1411.\nThe vuln was published 1 days ago by NIST.\n/search?src=sprv&q=CVE-2021-1411\n/hashtag/Sn5lgc535vtdhu?src=hashtag_click"}]}}, "extraReferences": [{"name": "20210324 Cisco Jabber Desktop and Mobile Client Software Vulnerabilities", "refsource": "CISCO", "tags": [], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"}], "hash": "4009e19a4ae416e2f76eda27282bfc38c73b316a3104a26d6b4639b16d73da00", "hashmap": [{"hash": "b2c3e1e08b48ca2671dadb9ade5b1365", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "7176696c4f29688f6933f5cf8dc58049", "key": "cwe"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "9a703ca9a59fd0b365fc45a1b4133e33", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "dabc2f71ed734a3bbd94fbda365274df", "key": "title"}, {"hash": "914859e1ddc65cafb101f901efb17ccc", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "2952a68761c310aaa2a72db661e58908", "key": "href"}, {"hash": "81342635da437da3b0897e10f103e0d6", "key": "cpeConfiguration"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "b0b0bcd0f28ac63fe980c5964ddd8a20", "key": "references"}, {"hash": "4808ece8dadfc23eb2b774ab5e1b855f", "key": "extraReferences"}, {"hash": "dfafb65575baec531c41a462fb64ca83", "key": "cvelist"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1411", "id": "CVE-2021-1411", "lastseen": "2021-03-25T12:44:21", "modified": "2021-03-24T22:30:00", "objectVersion": "1.3", "published": "2021-03-24T21:15:00", "references": ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"], "reporter": "cve@mitre.org", "title": "CVE-2021-1411", "type": "cve", "viewCount": 15}, "differentElements": ["extraReferences", "cvss", "cvss3", "cvss2", "modified", "affectedSoftware", "cpeConfiguration"], "edition": 1, "lastseen": "2021-03-25T12:44:21"}], "edition": 3, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "a03581803e42a00618e0226e44de0e32"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cpe23", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cpeConfiguration", "hash": "e2293556a416c367af7e183282c25b44"}, {"key": "cvelist", "hash": "dfafb65575baec531c41a462fb64ca83"}, {"key": "cvss", "hash": "62e86bb7716385cd46817416916a7bbd"}, {"key": "cvss2", "hash": "326bb90a9de8254bb7b400e76890967f"}, {"key": "cvss3", "hash": "f93d254aafa3092ea754b1e134c92d15"}, {"key": "cwe", "hash": "7176696c4f29688f6933f5cf8dc58049"}, {"key": "description", "hash": "9a703ca9a59fd0b365fc45a1b4133e33"}, {"key": "extraReferences", "hash": "0fd1a7fbb160b2eb8ae15a82ea1321ad"}, {"key": "href", "hash": "2952a68761c310aaa2a72db661e58908"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "c21ac9a283bfec2faf0f218c9d7be1da"}, {"key": "published", "hash": "914859e1ddc65cafb101f901efb17ccc"}, {"key": "references", "hash": "b0b0bcd0f28ac63fe980c5964ddd8a20"}, {"key": "reporter", "hash": "d23be448f90fb7586ac4c068c9a1027b"}, {"key": "title", "hash": "dabc2f71ed734a3bbd94fbda365274df"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "751d361315b82eb20bd38bb3da23e8ae733debdf45f00364f5939f04d486d8ca", "viewCount": 35, "enchantments": {"dependencies": {"references": [{"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/"]}, {"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "kaspersky", "idList": ["KLA12132"]}, {"type": "nessus", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"]}], "modified": "2021-04-28T11:49:15", "rev": 2}, "score": {"value": 4.3, "vector": "NONE", "modified": "2021-04-28T11:49:15", "rev": 2}, "twitter": {"counter": 8, "modified": "2021-03-25T12:44:21", "tweets": [{"link": "https://twitter.com/ipssignatures/status/1375463555500228612", "text": "The vuln CVE-2021-1411 has a tweet created 0 days ago and retweeted 8 times.\n/elhackernet/status/1375407693372985344\n/hashtag/Sn5lgc535vtdhu?src=hashtag_click"}, {"link": "https://twitter.com/CVEannounce/status/1375463300721442821", "text": "CVE-2021-1411, CVE-2021-1417, CVE-2021-1418, CVE-2021-1469, CVE-2021-1471"}, {"link": "https://twitter.com/riftsec/status/1375102842793562123", "text": "Video konferans yaz\u0131l\u0131m\u0131 Cisco Jabber'da CVE-2021-1411, CVE-2021-1417, CVE-2021-1469 kodlu kritik zafiyet tespit edilmi\u015ftir. \u0130leti i\u00e7eri\u011finin yanl\u0131\u015f do\u011frulanmas\u0131ndan kaynaklanan zafiyet, sald\u0131rgan\u0131n hedef sistemde uzaktan komut y\u00fcr\u00fctmesine izin vermektedir."}, {"link": "https://twitter.com/eyalestrin/status/1375705156159963137", "text": "Cisco Jabber Desktop and Mobile Client Software Vulnerabilities (CVE-2021-1411, CVE-2021-1417, CVE-2021-1418)"}, {"link": "https://twitter.com/autumn_good_35/status/1375064226352427009", "text": "XMPP\u30e1\u30c3\u30bb\u30fc\u30b8\u3092\u9001\u308c\u308b\u3053\u3068\u304c\u6761\u4ef6\n\n\u300eallow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges,\u300f\n\nCVE-2021-1411\nCVE-2021-1417\nCVE-2021-1418\nCisco Jabber Desktop and Mobile Client Software Vulnerabilities\nhttps://t.co/9pFX4Gcn69?amp=1"}, {"link": "https://twitter.com/autumn_good_35/status/1375064226352427009", "text": "XMPP\u30e1\u30c3\u30bb\u30fc\u30b8\u3092\u9001\u308c\u308b\u3053\u3068\u304c\u6761\u4ef6\n\n\u300eallow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges,\u300f\n\nCVE-2021-1411\nCVE-2021-1417\nCVE-2021-1418\nCisco Jabber Desktop and Mobile Client Software Vulnerabilities\nhttps://t.co/9pFX4Gcn69?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1376595109765070849", "text": " NEW: CVE-2021-1411 Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying op... (click for more) Severity: CRITICAL https://t.co/wXPjE30z03?amp=1"}, {"link": "https://twitter.com/ipssignatures/status/1375463554736881666", "text": "I know no IPS that has a protection/signature/rule for the vulnerability CVE-2021-1411.\nThe vuln was published 1 days ago by NIST.\n/search?src=sprv&q=CVE-2021-1411\n/hashtag/Sn5lgc535vtdhu?src=hashtag_click"}]}}, "objectVersion": "1.5", "cpe": [], "affectedSoftware": [{"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.8.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.7.4"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.6.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.1.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.5.4"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.9.5"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.5:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.9.5", "versionStartIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.5.4:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.5.4", "versionStartIncluding": "12.5.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.8.5:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.8.5", "versionStartIncluding": "12.8.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.1.5:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.1.5", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.6.5:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.6.5", "versionStartIncluding": "12.6.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.7.4:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.7.4", "versionStartIncluding": "12.7.0", "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "20210324 Cisco Jabber Desktop and Mobile Client Software Vulnerabilities", "refsource": "CISCO", "tags": ["Vendor Advisory"], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"}], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 9.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.9, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 6.0}, "cpe23": [], "cwe": ["CWE-170"], "scheme": null, "immutableFields": []}, {"id": "CVE-2021-1471", "bulletinFamily": "NVD", "title": "CVE-2021-1471", "description": "Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.", "published": "2021-03-24T20:15:00", "modified": "2021-03-29T17:37:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1471", "reporter": "psirt@cisco.com", "references": ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"], "cvelist": ["CVE-2021-1471"], "type": "cve", "lastseen": "2021-04-28T11:49:15", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "cvelist": ["CVE-2021-1471"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": ["CWE-170"], "description": "Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-03-25T12:44:21", "references": [{"idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"], "type": "thn"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"], "type": "cisco"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2021-03-25T12:44:21", "rev": 2, "value": 4.4, "vector": "NONE"}, "twitter": {"counter": 3, "modified": "2021-03-25T12:44:21", "tweets": [{"link": "https://twitter.com/CVEannounce/status/1375463300721442821", "text": "CVE-2021-1411, CVE-2021-1417, CVE-2021-1418, CVE-2021-1469, CVE-2021-1471"}, {"link": "https://twitter.com/CVEannounce/status/1375463300721442821", "text": "CVE-2021-1411, CVE-2021-1417, CVE-2021-1418, CVE-2021-1469, CVE-2021-1471"}, {"link": "https://twitter.com/threatintelctr/status/1376595109739921409", "text": " NEW: CVE-2021-1471 Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying op... (click for more) Severity: MEDIUM https://t.co/oo5pEYtNT1?amp=1"}]}}, "extraReferences": [{"name": "20210324 Cisco Jabber Desktop and Mobile Client Software Vulnerabilities", "refsource": "CISCO", "tags": [], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"}], "hash": "3b8c8d506f277f84ec1d0e37455fec855feaf300849e020980b9e2a6ebba7b7a", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "7176696c4f29688f6933f5cf8dc58049", "key": "cwe"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "9a703ca9a59fd0b365fc45a1b4133e33", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "bea8b8148eae90244c7e7b64b77a0a8a", "key": "published"}, {"hash": "bd6c4b65947192955e285930d2541b1b", "key": "title"}, {"hash": "81342635da437da3b0897e10f103e0d6", "key": "cpeConfiguration"}, {"hash": "39b602fea10e82dd3589a4a6faa1aed1", "key": "cvelist"}, {"hash": "2f092dd8071f50ee1cfb4f44e31f6304", "key": "href"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "b0b0bcd0f28ac63fe980c5964ddd8a20", "key": "references"}, {"hash": "4808ece8dadfc23eb2b774ab5e1b855f", "key": "extraReferences"}, {"hash": "914859e1ddc65cafb101f901efb17ccc", "key": "modified"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1471", "id": "CVE-2021-1471", "lastseen": "2021-03-25T12:44:21", "modified": "2021-03-24T21:15:00", "objectVersion": "1.3", "published": "2021-03-24T20:15:00", "references": ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"], "reporter": "cve@mitre.org", "title": "CVE-2021-1471", "type": "cve", "viewCount": 4}, "differentElements": ["extraReferences", "cpe23", "cvss", "cvss3", "cvss2", "modified", "cpe", "cwe", "affectedSoftware", "cpeConfiguration"], "edition": 1, "lastseen": "2021-03-25T12:44:21"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.8.7"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.8.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.9.6"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.7.4"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.6.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.1.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "le", "version": "12.9.0"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "le", "version": "12.9.0"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.5.4"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.9.5"}], "bulletinFamily": "NVD", "cpe": ["cpe:/a:cisco:jabber:12.9.0"], "cpe23": ["cpe:2.3:a:cisco:jabber:12.9.0:*:*:*:*:android:*:*", "cpe:2.3:a:cisco:jabber:12.9.0:*:*:*:*:iphone_os:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.6.5:*:*:*:*:windows:*:*", "versionEndExcluding": "12.6.5", "versionStartIncluding": "12.6.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.5.4:*:*:*:*:windows:*:*", "versionEndExcluding": "12.5.4", "versionStartIncluding": "12.5.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.6:*:*:*:*:macos:*:*", "versionEndExcluding": "12.9.6", "versionStartIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.0:*:*:*:*:android:*:*", "versionEndIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.8.5:*:*:*:*:windows:*:*", "versionEndExcluding": "12.8.5", "versionStartIncluding": "12.8.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.5:*:*:*:*:windows:*:*", "versionEndExcluding": "12.9.5", "versionStartIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.8.7:*:*:*:*:macos:*:*", "versionEndExcluding": "12.8.7", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.0:*:*:*:*:iphone_os:*:*", "versionEndIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.1.5:*:*:*:*:windows:*:*", "versionEndExcluding": "12.1.5", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.7.4:*:*:*:*:windows:*:*", "versionEndExcluding": "12.7.4", "versionStartIncluding": "12.7.0", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-1471"], "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.6, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 3.4}, "cwe": ["CWE-295"], "description": "Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.", "edition": 2, "enchantments": {"dependencies": {"modified": "2021-03-30T12:45:28", "references": [{"idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"], "type": "thn"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"], "type": "cisco"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2021-03-30T12:45:28", "rev": 2, "value": 4.4, "vector": "NONE"}, "twitter": {"counter": 3, "modified": "2021-03-25T12:44:21", "tweets": [{"link": "https://twitter.com/CVEannounce/status/1375463300721442821", "text": "CVE-2021-1411, CVE-2021-1417, CVE-2021-1418, CVE-2021-1469, CVE-2021-1471"}, {"link": "https://twitter.com/CVEannounce/status/1375463300721442821", "text": "CVE-2021-1411, CVE-2021-1417, CVE-2021-1418, CVE-2021-1469, CVE-2021-1471"}, {"link": "https://twitter.com/threatintelctr/status/1376595109739921409", "text": " NEW: CVE-2021-1471 Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying op... (click for more) Severity: MEDIUM https://t.co/oo5pEYtNT1?amp=1"}]}}, "extraReferences": [{"name": "20210324 Cisco Jabber Desktop and Mobile Client Software Vulnerabilities", "refsource": "CISCO", "tags": ["Vendor Advisory"], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"}], "hash": "d87d0b97a36f6b65d1976a6056f4b6c15fe607cfe7c01134233d64e48ab5f82d", "hashmap": [{"hash": "bd061ed0c0de0037c1b9d96627bc8ea7", "key": "cvss3"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "99f49eef72944845d11ae2782a859a6c", "key": "cvss2"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "c53c6ea4b1e6763349da72ed86f97caa", "key": "cpe23"}, {"hash": "0fd1a7fbb160b2eb8ae15a82ea1321ad", "key": "extraReferences"}, {"hash": "5227e8cdd92a57ebd69ec1a3e31b0d87", "key": "cpeConfiguration"}, {"hash": "6cbbd3242bbaae9c0594fb15f8a00d08", "key": "modified"}, {"hash": "4cac367be6dd8242802053610be9dee6", "key": "cvss"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "9a703ca9a59fd0b365fc45a1b4133e33", "key": "description"}, {"hash": "1fda7b0b926d76c5fe7c1525afb0e66e", "key": "cwe"}, {"hash": "dd094f18d7429c7d60c8e179a6c7bad1", "key": "cpe"}, {"hash": "1b2273bd181a620820bb59650de32149", "key": "affectedSoftware"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "bea8b8148eae90244c7e7b64b77a0a8a", "key": "published"}, {"hash": "bd6c4b65947192955e285930d2541b1b", "key": "title"}, {"hash": "39b602fea10e82dd3589a4a6faa1aed1", "key": "cvelist"}, {"hash": "2f092dd8071f50ee1cfb4f44e31f6304", "key": "href"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "b0b0bcd0f28ac63fe980c5964ddd8a20", "key": "references"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1471", "id": "CVE-2021-1471", "immutableFields": [], "lastseen": "2021-03-30T12:45:28", "modified": "2021-03-29T17:37:00", "objectVersion": "1.5", "published": "2021-03-24T20:15:00", "references": ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"], "reporter": "cve@mitre.org", "title": "CVE-2021-1471", "type": "cve", "viewCount": 13}, "different_elements": ["reporter", "cpeConfiguration"], "edition": 2, "lastseen": "2021-03-30T12:45:28"}], "edition": 3, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "1b2273bd181a620820bb59650de32149"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "dd094f18d7429c7d60c8e179a6c7bad1"}, {"key": "cpe23", "hash": "c53c6ea4b1e6763349da72ed86f97caa"}, {"key": "cpeConfiguration", "hash": "64895e855ef5131845d92c3df1c321cc"}, {"key": "cvelist", "hash": "39b602fea10e82dd3589a4a6faa1aed1"}, {"key": "cvss", "hash": "4cac367be6dd8242802053610be9dee6"}, {"key": "cvss2", "hash": "99f49eef72944845d11ae2782a859a6c"}, {"key": "cvss3", "hash": "bd061ed0c0de0037c1b9d96627bc8ea7"}, {"key": "cwe", "hash": "1fda7b0b926d76c5fe7c1525afb0e66e"}, {"key": "description", "hash": "9a703ca9a59fd0b365fc45a1b4133e33"}, {"key": "extraReferences", "hash": "0fd1a7fbb160b2eb8ae15a82ea1321ad"}, {"key": "href", "hash": "2f092dd8071f50ee1cfb4f44e31f6304"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "6cbbd3242bbaae9c0594fb15f8a00d08"}, {"key": "published", "hash": "bea8b8148eae90244c7e7b64b77a0a8a"}, {"key": "references", "hash": "b0b0bcd0f28ac63fe980c5964ddd8a20"}, {"key": "reporter", "hash": "d23be448f90fb7586ac4c068c9a1027b"}, {"key": "title", "hash": "bd6c4b65947192955e285930d2541b1b"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "eb6760da8e0d4d4029acba44d7241adf985e4684fad9d86446b62a28dc58dcec", "viewCount": 31, "enchantments": {"dependencies": {"references": [{"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/"]}, {"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "nessus", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"]}, {"type": "kaspersky", "idList": ["KLA12132"]}], "modified": "2021-04-28T11:49:15", "rev": 2}, "score": {"value": 4.3, "vector": "NONE", "modified": "2021-04-28T11:49:15", "rev": 2}, "twitter": {"counter": 3, "modified": "2021-03-25T12:44:21", "tweets": [{"link": "https://twitter.com/CVEannounce/status/1375463300721442821", "text": "CVE-2021-1411, CVE-2021-1417, CVE-2021-1418, CVE-2021-1469, CVE-2021-1471"}, {"link": "https://twitter.com/CVEannounce/status/1375463300721442821", "text": "CVE-2021-1411, CVE-2021-1417, CVE-2021-1418, CVE-2021-1469, CVE-2021-1471"}, {"link": "https://twitter.com/threatintelctr/status/1376595109739921409", "text": " NEW: CVE-2021-1471 Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying op... (click for more) Severity: MEDIUM https://t.co/oo5pEYtNT1?amp=1"}]}}, "objectVersion": "1.5", "cpe": ["cpe:/a:cisco:jabber:12.9.0"], "affectedSoftware": [{"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.8.7"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.8.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.9.6"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.7.4"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.6.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.1.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "le", "version": "12.9.0"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "le", "version": "12.9.0"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.5.4"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.9.5"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.5:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.9.5", "versionStartIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.8.7:*:*:*:*:macos:*:*", "cpe_name": [], "versionEndExcluding": "12.8.7", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.0:*:*:*:*:iphone_os:*:*", "cpe_name": [], "versionEndIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.6:*:*:*:*:macos:*:*", "cpe_name": [], "versionEndExcluding": "12.9.6", "versionStartIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.0:*:*:*:*:android:*:*", "cpe_name": [], "versionEndIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.5.4:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.5.4", "versionStartIncluding": "12.5.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.8.5:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.8.5", "versionStartIncluding": "12.8.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.1.5:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.1.5", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.6.5:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.6.5", "versionStartIncluding": "12.6.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.7.4:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.7.4", "versionStartIncluding": "12.7.0", "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "20210324 Cisco Jabber Desktop and Mobile Client Software Vulnerabilities", "refsource": "CISCO", "tags": ["Vendor Advisory"], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"}], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.6, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 3.4}, "cpe23": ["cpe:2.3:a:cisco:jabber:12.9.0:*:*:*:*:android:*:*", "cpe:2.3:a:cisco:jabber:12.9.0:*:*:*:*:iphone_os:*:*"], "cwe": ["CWE-295"], "scheme": null, "immutableFields": []}, {"id": "CVE-2021-1469", "bulletinFamily": "NVD", "title": "CVE-2021-1469", "description": "Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.", "published": "2021-03-24T20:15:00", "modified": "2021-03-29T17:45:00", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1469", "reporter": "psirt@cisco.com", "references": ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"], "cvelist": ["CVE-2021-1469"], "type": "cve", "lastseen": "2021-04-28T11:49:15", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.8.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.7.4"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.6.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.1.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.5.4"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.9.5"}], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.6.5:*:*:*:*:windows:*:*", "versionEndExcluding": "12.6.5", "versionStartIncluding": "12.6.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.5.4:*:*:*:*:windows:*:*", "versionEndExcluding": "12.5.4", "versionStartIncluding": "12.5.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.8.5:*:*:*:*:windows:*:*", "versionEndExcluding": "12.8.5", "versionStartIncluding": "12.8.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.5:*:*:*:*:windows:*:*", "versionEndExcluding": "12.9.5", "versionStartIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.1.5:*:*:*:*:windows:*:*", "versionEndExcluding": "12.1.5", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.7.4:*:*:*:*:windows:*:*", "versionEndExcluding": "12.7.4", "versionStartIncluding": "12.7.0", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-1469"], "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 5.9}, "cwe": ["CWE-170", "CWE-20"], "description": "Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.", "edition": 2, "enchantments": {"dependencies": {"modified": "2021-03-30T12:45:28", "references": [{"idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"], "type": "thn"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"], "type": "cisco"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2021-03-30T12:45:28", "rev": 2, "value": 4.4, "vector": "NONE"}, "twitter": {"counter": 4, "modified": "2021-03-25T12:44:21", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1376595109769310212", "text": " NEW: CVE-2021-1469 Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying op... (click for more) Severity: HIGH https://t.co/giecWJzS1s?amp=1"}, {"link": "https://twitter.com/CVEannounce/status/1375463300721442821", "text": "CVE-2021-1411, CVE-2021-1417, CVE-2021-1418, CVE-2021-1469, CVE-2021-1471"}, {"link": "https://twitter.com/riftsec/status/1375102842793562123", "text": "Video konferans yaz\u0131l\u0131m\u0131 Cisco Jabber'da CVE-2021-1411, CVE-2021-1417, CVE-2021-1469 kodlu kritik zafiyet tespit edilmi\u015ftir. \u0130leti i\u00e7eri\u011finin yanl\u0131\u015f do\u011frulanmas\u0131ndan kaynaklanan zafiyet, sald\u0131rgan\u0131n hedef sistemde uzaktan komut y\u00fcr\u00fctmesine izin vermektedir."}, {"link": "https://twitter.com/riftsec/status/1375102842793562123", "text": "Video konferans yaz\u0131l\u0131m\u0131 Cisco Jabber'da CVE-2021-1411, CVE-2021-1417, CVE-2021-1469 kodlu kritik zafiyet tespit edilmi\u015ftir. \u0130leti i\u00e7eri\u011finin yanl\u0131\u015f do\u011frulanmas\u0131ndan kaynaklanan zafiyet, sald\u0131rgan\u0131n hedef sistemde uzaktan komut y\u00fcr\u00fctmesine izin vermektedir."}]}}, "extraReferences": [{"name": "20210324 Cisco Jabber Desktop and Mobile Client Software Vulnerabilities", "refsource": "CISCO", "tags": ["Vendor Advisory"], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"}], "hash": "6bb6ca302cc8a11920fe449c662cb978640f2f1d38454e4b4113f677ee72991f", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "8d4ce015e6c41f5b47f0613eef7b9df4", "key": "cpeConfiguration"}, {"hash": "afe28209a23876295a10895afc062b99", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "6761e092e94201d39ddfd380a6b7119f", "key": "cvss3"}, {"hash": "0187fd86f792b6c1e0077d0f69d0ed79", "key": "cvss"}, {"hash": "0fd1a7fbb160b2eb8ae15a82ea1321ad", "key": "extraReferences"}, {"hash": "4492cedeae75fa2423c5a4205311be88", "key": "cwe"}, {"hash": "5e31de1deaffaf8c31ccc241b61aec0d", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "9a703ca9a59fd0b365fc45a1b4133e33", "key": "description"}, {"hash": "3bf2877e19b91d4143ea460e43ce9041", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "bea8b8148eae90244c7e7b64b77a0a8a", "key": "published"}, {"hash": "42d47b2ffa21d4095395b38f941e0669", "key": "href"}, {"hash": "a03581803e42a00618e0226e44de0e32", "key": "affectedSoftware"}, {"hash": "45dab16fae1036c8d70c9498f948d705", "key": "modified"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "b0b0bcd0f28ac63fe980c5964ddd8a20", "key": "references"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1469", "id": "CVE-2021-1469", "immutableFields": [], "lastseen": "2021-03-30T12:45:28", "modified": "2021-03-29T17:45:00", "objectVersion": "1.5", "published": "2021-03-24T20:15:00", "references": ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"], "reporter": "cve@mitre.org", "title": "CVE-2021-1469", "type": "cve", "viewCount": 3}, "different_elements": ["reporter", "cpeConfiguration"], "edition": 2, "lastseen": "2021-03-30T12:45:28"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "cvelist": ["CVE-2021-1469"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": ["CWE-170"], "description": "Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-03-25T12:44:21", "references": [{"idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"], "type": "thn"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"], "type": "cisco"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2021-03-25T12:44:21", "rev": 2, "value": 4.4, "vector": "NONE"}, "twitter": {"counter": 4, "modified": "2021-03-25T12:44:21", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1376595109769310212", "text": " NEW: CVE-2021-1469 Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying op... (click for more) Severity: HIGH https://t.co/giecWJzS1s?amp=1"}, {"link": "https://twitter.com/CVEannounce/status/1375463300721442821", "text": "CVE-2021-1411, CVE-2021-1417, CVE-2021-1418, CVE-2021-1469, CVE-2021-1471"}, {"link": "https://twitter.com/riftsec/status/1375102842793562123", "text": "Video konferans yaz\u0131l\u0131m\u0131 Cisco Jabber'da CVE-2021-1411, CVE-2021-1417, CVE-2021-1469 kodlu kritik zafiyet tespit edilmi\u015ftir. \u0130leti i\u00e7eri\u011finin yanl\u0131\u015f do\u011frulanmas\u0131ndan kaynaklanan zafiyet, sald\u0131rgan\u0131n hedef sistemde uzaktan komut y\u00fcr\u00fctmesine izin vermektedir."}, {"link": "https://twitter.com/riftsec/status/1375102842793562123", "text": "Video konferans yaz\u0131l\u0131m\u0131 Cisco Jabber'da CVE-2021-1411, CVE-2021-1417, CVE-2021-1469 kodlu kritik zafiyet tespit edilmi\u015ftir. \u0130leti i\u00e7eri\u011finin yanl\u0131\u015f do\u011frulanmas\u0131ndan kaynaklanan zafiyet, sald\u0131rgan\u0131n hedef sistemde uzaktan komut y\u00fcr\u00fctmesine izin vermektedir."}]}}, "extraReferences": [{"name": "20210324 Cisco Jabber Desktop and Mobile Client Software Vulnerabilities", "refsource": "CISCO", "tags": [], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"}], "hash": "d6e44c3008c6a230524ad16b7e2aee2468167aa1b215a385d1d7296c2dba4c74", "hashmap": [{"hash": "afe28209a23876295a10895afc062b99", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "7176696c4f29688f6933f5cf8dc58049", "key": "cwe"}, {"hash": "5e31de1deaffaf8c31ccc241b61aec0d", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "9a703ca9a59fd0b365fc45a1b4133e33", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "bea8b8148eae90244c7e7b64b77a0a8a", "key": "published"}, {"hash": "42d47b2ffa21d4095395b38f941e0669", "key": "href"}, {"hash": "81342635da437da3b0897e10f103e0d6", "key": "cpeConfiguration"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "b0b0bcd0f28ac63fe980c5964ddd8a20", "key": "references"}, {"hash": "4808ece8dadfc23eb2b774ab5e1b855f", "key": "extraReferences"}, {"hash": "914859e1ddc65cafb101f901efb17ccc", "key": "modified"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1469", "id": "CVE-2021-1469", "lastseen": "2021-03-25T12:44:21", "modified": "2021-03-24T21:15:00", "objectVersion": "1.3", "published": "2021-03-24T20:15:00", "references": ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"], "reporter": "cve@mitre.org", "title": "CVE-2021-1469", "type": "cve", "viewCount": 2}, "differentElements": ["extraReferences", "cvss", "cvss3", "cvss2", "modified", "cwe", "affectedSoftware", "cpeConfiguration"], "edition": 1, "lastseen": "2021-03-25T12:44:21"}], "edition": 3, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "a03581803e42a00618e0226e44de0e32"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cpe23", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cpeConfiguration", "hash": "e2293556a416c367af7e183282c25b44"}, {"key": "cvelist", "hash": "5e31de1deaffaf8c31ccc241b61aec0d"}, {"key": "cvss", "hash": "0187fd86f792b6c1e0077d0f69d0ed79"}, {"key": "cvss2", "hash": "3bf2877e19b91d4143ea460e43ce9041"}, {"key": "cvss3", "hash": "6761e092e94201d39ddfd380a6b7119f"}, {"key": "cwe", "hash": "4492cedeae75fa2423c5a4205311be88"}, {"key": "description", "hash": "9a703ca9a59fd0b365fc45a1b4133e33"}, {"key": "extraReferences", "hash": "0fd1a7fbb160b2eb8ae15a82ea1321ad"}, {"key": "href", "hash": "42d47b2ffa21d4095395b38f941e0669"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "45dab16fae1036c8d70c9498f948d705"}, {"key": "published", "hash": "bea8b8148eae90244c7e7b64b77a0a8a"}, {"key": "references", "hash": "b0b0bcd0f28ac63fe980c5964ddd8a20"}, {"key": "reporter", "hash": "d23be448f90fb7586ac4c068c9a1027b"}, {"key": "title", "hash": "afe28209a23876295a10895afc062b99"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "118c00f03b2d6db911193b811e61839d3ac0b8080aa40cf8350b3dc454e87b80", "viewCount": 17, "enchantments": {"dependencies": {"references": [{"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/"]}, {"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "kaspersky", "idList": ["KLA12132"]}, {"type": "nessus", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"]}], "modified": "2021-04-28T11:49:15", "rev": 2}, "score": {"value": 4.3, "vector": "NONE", "modified": "2021-04-28T11:49:15", "rev": 2}, "twitter": {"counter": 4, "modified": "2021-03-25T12:44:21", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1376595109769310212", "text": " NEW: CVE-2021-1469 Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying op... (click for more) Severity: HIGH https://t.co/giecWJzS1s?amp=1"}, {"link": "https://twitter.com/CVEannounce/status/1375463300721442821", "text": "CVE-2021-1411, CVE-2021-1417, CVE-2021-1418, CVE-2021-1469, CVE-2021-1471"}, {"link": "https://twitter.com/riftsec/status/1375102842793562123", "text": "Video konferans yaz\u0131l\u0131m\u0131 Cisco Jabber'da CVE-2021-1411, CVE-2021-1417, CVE-2021-1469 kodlu kritik zafiyet tespit edilmi\u015ftir. \u0130leti i\u00e7eri\u011finin yanl\u0131\u015f do\u011frulanmas\u0131ndan kaynaklanan zafiyet, sald\u0131rgan\u0131n hedef sistemde uzaktan komut y\u00fcr\u00fctmesine izin vermektedir."}, {"link": "https://twitter.com/riftsec/status/1375102842793562123", "text": "Video konferans yaz\u0131l\u0131m\u0131 Cisco Jabber'da CVE-2021-1411, CVE-2021-1417, CVE-2021-1469 kodlu kritik zafiyet tespit edilmi\u015ftir. \u0130leti i\u00e7eri\u011finin yanl\u0131\u015f do\u011frulanmas\u0131ndan kaynaklanan zafiyet, sald\u0131rgan\u0131n hedef sistemde uzaktan komut y\u00fcr\u00fctmesine izin vermektedir."}]}}, "objectVersion": "1.5", "cpe": [], "affectedSoftware": [{"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.8.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.7.4"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.6.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.1.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.5.4"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.9.5"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.5:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.9.5", "versionStartIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.5.4:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.5.4", "versionStartIncluding": "12.5.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.8.5:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.8.5", "versionStartIncluding": "12.8.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.1.5:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.1.5", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.6.5:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.6.5", "versionStartIncluding": "12.6.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.7.4:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.7.4", "versionStartIncluding": "12.7.0", "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "20210324 Cisco Jabber Desktop and Mobile Client Software Vulnerabilities", "refsource": "CISCO", "tags": ["Vendor Advisory"], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"}], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 5.9}, "cpe23": [], "cwe": ["CWE-170", "CWE-20"], "scheme": null, "immutableFields": []}, {"id": "CVE-2021-1417", "bulletinFamily": "NVD", "title": "CVE-2021-1417", "description": "Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.", "published": "2021-03-24T21:15:00", "modified": "2021-03-29T17:13:00", "cvss": {"score": 4.0, "vector": "AV:N/AC:L/Au:S/C:P/I:N/A:N"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1417", "reporter": "psirt@cisco.com", "references": ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"], "cvelist": ["CVE-2021-1417"], "type": "cve", "lastseen": "2021-04-28T11:49:15", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "cvelist": ["CVE-2021-1417"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": ["CWE-170"], "description": "Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-03-25T12:44:21", "references": [{"idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"], "type": "thn"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"], "type": "cisco"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2021-03-25T12:44:21", "rev": 2, "value": 4.4, "vector": "NONE"}, "twitter": {"counter": 5, "modified": "2021-03-25T12:44:21", "tweets": [{"link": "https://twitter.com/CVEannounce/status/1375463300721442821", "text": "CVE-2021-1411, CVE-2021-1417, CVE-2021-1418, CVE-2021-1469, CVE-2021-1471"}, {"link": "https://twitter.com/riftsec/status/1375102842793562123", "text": "Video konferans yaz\u0131l\u0131m\u0131 Cisco Jabber'da CVE-2021-1411, CVE-2021-1417, CVE-2021-1469 kodlu kritik zafiyet tespit edilmi\u015ftir. \u0130leti i\u00e7eri\u011finin yanl\u0131\u015f do\u011frulanmas\u0131ndan kaynaklanan zafiyet, sald\u0131rgan\u0131n hedef sistemde uzaktan komut y\u00fcr\u00fctmesine izin vermektedir."}, {"link": "https://twitter.com/eyalestrin/status/1375705156159963137", "text": "Cisco Jabber Desktop and Mobile Client Software Vulnerabilities (CVE-2021-1411, CVE-2021-1417, CVE-2021-1418)"}, {"link": "https://twitter.com/autumn_good_35/status/1375064226352427009", "text": "XMPP\u30e1\u30c3\u30bb\u30fc\u30b8\u3092\u9001\u308c\u308b\u3053\u3068\u304c\u6761\u4ef6\n\n\u300eallow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges,\u300f\n\nCVE-2021-1411\nCVE-2021-1417\nCVE-2021-1418\nCisco Jabber Desktop and Mobile Client Software Vulnerabilities\nhttps://t.co/9pFX4Gcn69?amp=1"}, {"link": "https://twitter.com/autumn_good_35/status/1375064226352427009", "text": "XMPP\u30e1\u30c3\u30bb\u30fc\u30b8\u3092\u9001\u308c\u308b\u3053\u3068\u304c\u6761\u4ef6\n\n\u300eallow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges,\u300f\n\nCVE-2021-1411\nCVE-2021-1417\nCVE-2021-1418\nCisco Jabber Desktop and Mobile Client Software Vulnerabilities\nhttps://t.co/9pFX4Gcn69?amp=1"}]}}, "extraReferences": [{"name": "20210324 Cisco Jabber Desktop and Mobile Client Software Vulnerabilities", "refsource": "CISCO", "tags": [], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"}], "hash": "158f33ad2633c1b78296d644fda4b502c450e97bc614128cb3f6038a75cefaea", "hashmap": [{"hash": "42024cba1d0fbdb593ce726a2dca24dc", "key": "cvelist"}, {"hash": "b2c3e1e08b48ca2671dadb9ade5b1365", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "7176696c4f29688f6933f5cf8dc58049", "key": "cwe"}, {"hash": "85570bc201e059e936ed6451315c036c", "key": "href"}, {"hash": "4d5ab7296ad27a6463f348be840f301f", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "9a703ca9a59fd0b365fc45a1b4133e33", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "914859e1ddc65cafb101f901efb17ccc", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "81342635da437da3b0897e10f103e0d6", "key": "cpeConfiguration"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "b0b0bcd0f28ac63fe980c5964ddd8a20", "key": "references"}, {"hash": "4808ece8dadfc23eb2b774ab5e1b855f", "key": "extraReferences"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1417", "id": "CVE-2021-1417", "lastseen": "2021-03-25T12:44:21", "modified": "2021-03-24T22:30:00", "objectVersion": "1.3", "published": "2021-03-24T21:15:00", "references": ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"], "reporter": "cve@mitre.org", "title": "CVE-2021-1417", "type": "cve", "viewCount": 9}, "differentElements": ["extraReferences", "cvss", "cvss3", "cvss2", "modified", "cwe", "affectedSoftware", "cpeConfiguration"], "edition": 1, "lastseen": "2021-03-25T12:44:21"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.8.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.7.4"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.6.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.1.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.5.4"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.9.5"}], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.6.5:*:*:*:*:windows:*:*", "versionEndExcluding": "12.6.5", "versionStartIncluding": "12.6.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.5.4:*:*:*:*:windows:*:*", "versionEndExcluding": "12.5.4", "versionStartIncluding": "12.5.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.8.5:*:*:*:*:windows:*:*", "versionEndExcluding": "12.8.5", "versionStartIncluding": "12.8.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.5:*:*:*:*:windows:*:*", "versionEndExcluding": "12.9.5", "versionStartIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.1.5:*:*:*:*:windows:*:*", "versionEndExcluding": "12.1.5", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.7.4:*:*:*:*:windows:*:*", "versionEndExcluding": "12.7.4", "versionStartIncluding": "12.7.0", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-1417"], "cvss": {"score": 4.0, "vector": "AV:N/AC:L/Au:S/C:P/I:N/A:N"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6}, "cwe": ["CWE-200"], "description": "Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.", "edition": 2, "enchantments": {"dependencies": {"modified": "2021-03-30T12:45:28", "references": [{"idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"], "type": "thn"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"], "type": "cisco"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2021-03-30T12:45:28", "rev": 2, "value": 4.4, "vector": "NONE"}, "twitter": {"counter": 5, "modified": "2021-03-25T12:44:21", "tweets": [{"link": "https://twitter.com/CVEannounce/status/1375463300721442821", "text": "CVE-2021-1411, CVE-2021-1417, CVE-2021-1418, CVE-2021-1469, CVE-2021-1471"}, {"link": "https://twitter.com/riftsec/status/1375102842793562123", "text": "Video konferans yaz\u0131l\u0131m\u0131 Cisco Jabber'da CVE-2021-1411, CVE-2021-1417, CVE-2021-1469 kodlu kritik zafiyet tespit edilmi\u015ftir. \u0130leti i\u00e7eri\u011finin yanl\u0131\u015f do\u011frulanmas\u0131ndan kaynaklanan zafiyet, sald\u0131rgan\u0131n hedef sistemde uzaktan komut y\u00fcr\u00fctmesine izin vermektedir."}, {"link": "https://twitter.com/eyalestrin/status/1375705156159963137", "text": "Cisco Jabber Desktop and Mobile Client Software Vulnerabilities (CVE-2021-1411, CVE-2021-1417, CVE-2021-1418)"}, {"link": "https://twitter.com/autumn_good_35/status/1375064226352427009", "text": "XMPP\u30e1\u30c3\u30bb\u30fc\u30b8\u3092\u9001\u308c\u308b\u3053\u3068\u304c\u6761\u4ef6\n\n\u300eallow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges,\u300f\n\nCVE-2021-1411\nCVE-2021-1417\nCVE-2021-1418\nCisco Jabber Desktop and Mobile Client Software Vulnerabilities\nhttps://t.co/9pFX4Gcn69?amp=1"}, {"link": "https://twitter.com/autumn_good_35/status/1375064226352427009", "text": "XMPP\u30e1\u30c3\u30bb\u30fc\u30b8\u3092\u9001\u308c\u308b\u3053\u3068\u304c\u6761\u4ef6\n\n\u300eallow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges,\u300f\n\nCVE-2021-1411\nCVE-2021-1417\nCVE-2021-1418\nCisco Jabber Desktop and Mobile Client Software Vulnerabilities\nhttps://t.co/9pFX4Gcn69?amp=1"}]}}, "extraReferences": [{"name": "20210324 Cisco Jabber Desktop and Mobile Client Software Vulnerabilities", "refsource": "CISCO", "tags": ["Vendor Advisory"], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"}], "hash": "f77480db2ee10980a8a03379ce6d0eee4b6dfba5e3eefdd1ead4a01cca87bc0f", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "8d4ce015e6c41f5b47f0613eef7b9df4", "key": "cpeConfiguration"}, {"hash": "42024cba1d0fbdb593ce726a2dca24dc", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "07a69fb94693e6a2da876529ddd1e0ec", "key": "cvss2"}, {"hash": "0fd1a7fbb160b2eb8ae15a82ea1321ad", "key": "extraReferences"}, {"hash": "95bbd61465af83839c65cf241b5d3c7e", "key": "modified"}, {"hash": "85570bc201e059e936ed6451315c036c", "key": "href"}, {"hash": "4d5ab7296ad27a6463f348be840f301f", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "9a703ca9a59fd0b365fc45a1b4133e33", "key": "description"}, {"hash": "914859e1ddc65cafb101f901efb17ccc", "key": "published"}, {"hash": "e8d0af68bb102357c1a66383d1243ed9", "key": "cvss3"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "e258b79b31d39a327c9dafeb61b7a729", "key": "cvss"}, {"hash": "a03581803e42a00618e0226e44de0e32", "key": "affectedSoftware"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "b647a850fd42b235dd11ee60cf626f2d", "key": "cwe"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "b0b0bcd0f28ac63fe980c5964ddd8a20", "key": "references"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1417", "id": "CVE-2021-1417", "immutableFields": [], "lastseen": "2021-03-30T12:45:28", "modified": "2021-03-29T17:13:00", "objectVersion": "1.5", "published": "2021-03-24T21:15:00", "references": ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"], "reporter": "cve@mitre.org", "title": "CVE-2021-1417", "type": "cve", "viewCount": 10}, "different_elements": ["reporter", "cpeConfiguration"], "edition": 2, "lastseen": "2021-03-30T12:45:28"}], "edition": 3, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "a03581803e42a00618e0226e44de0e32"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cpe23", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cpeConfiguration", "hash": "e2293556a416c367af7e183282c25b44"}, {"key": "cvelist", "hash": "42024cba1d0fbdb593ce726a2dca24dc"}, {"key": "cvss", "hash": "e258b79b31d39a327c9dafeb61b7a729"}, {"key": "cvss2", "hash": "07a69fb94693e6a2da876529ddd1e0ec"}, {"key": "cvss3", "hash": "e8d0af68bb102357c1a66383d1243ed9"}, {"key": "cwe", "hash": "b647a850fd42b235dd11ee60cf626f2d"}, {"key": "description", "hash": "9a703ca9a59fd0b365fc45a1b4133e33"}, {"key": "extraReferences", "hash": "0fd1a7fbb160b2eb8ae15a82ea1321ad"}, {"key": "href", "hash": "85570bc201e059e936ed6451315c036c"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "95bbd61465af83839c65cf241b5d3c7e"}, {"key": "published", "hash": "914859e1ddc65cafb101f901efb17ccc"}, {"key": "references", "hash": "b0b0bcd0f28ac63fe980c5964ddd8a20"}, {"key": "reporter", "hash": "d23be448f90fb7586ac4c068c9a1027b"}, {"key": "title", "hash": "4d5ab7296ad27a6463f348be840f301f"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "f036469fcaa213ed15dea5a3495401c79b05c354375bcf55a3ac4ed05902fcda", "viewCount": 23, "enchantments": {"dependencies": {"references": [{"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/"]}, {"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "nessus", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"]}, {"type": "kaspersky", "idList": ["KLA12132"]}], "modified": "2021-04-28T11:49:15", "rev": 2}, "score": {"value": 4.3, "vector": "NONE", "modified": "2021-04-28T11:49:15", "rev": 2}, "twitter": {"counter": 5, "modified": "2021-03-25T12:44:21", "tweets": [{"link": "https://twitter.com/CVEannounce/status/1375463300721442821", "text": "CVE-2021-1411, CVE-2021-1417, CVE-2021-1418, CVE-2021-1469, CVE-2021-1471"}, {"link": "https://twitter.com/riftsec/status/1375102842793562123", "text": "Video konferans yaz\u0131l\u0131m\u0131 Cisco Jabber'da CVE-2021-1411, CVE-2021-1417, CVE-2021-1469 kodlu kritik zafiyet tespit edilmi\u015ftir. \u0130leti i\u00e7eri\u011finin yanl\u0131\u015f do\u011frulanmas\u0131ndan kaynaklanan zafiyet, sald\u0131rgan\u0131n hedef sistemde uzaktan komut y\u00fcr\u00fctmesine izin vermektedir."}, {"link": "https://twitter.com/eyalestrin/status/1375705156159963137", "text": "Cisco Jabber Desktop and Mobile Client Software Vulnerabilities (CVE-2021-1411, CVE-2021-1417, CVE-2021-1418)"}, {"link": "https://twitter.com/autumn_good_35/status/1375064226352427009", "text": "XMPP\u30e1\u30c3\u30bb\u30fc\u30b8\u3092\u9001\u308c\u308b\u3053\u3068\u304c\u6761\u4ef6\n\n\u300eallow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges,\u300f\n\nCVE-2021-1411\nCVE-2021-1417\nCVE-2021-1418\nCisco Jabber Desktop and Mobile Client Software Vulnerabilities\nhttps://t.co/9pFX4Gcn69?amp=1"}, {"link": "https://twitter.com/autumn_good_35/status/1375064226352427009", "text": "XMPP\u30e1\u30c3\u30bb\u30fc\u30b8\u3092\u9001\u308c\u308b\u3053\u3068\u304c\u6761\u4ef6\n\n\u300eallow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges,\u300f\n\nCVE-2021-1411\nCVE-2021-1417\nCVE-2021-1418\nCisco Jabber Desktop and Mobile Client Software Vulnerabilities\nhttps://t.co/9pFX4Gcn69?amp=1"}]}}, "objectVersion": "1.5", "cpe": [], "affectedSoftware": [{"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.8.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.7.4"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.6.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.1.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.5.4"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.9.5"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.5:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.9.5", "versionStartIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.5.4:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.5.4", "versionStartIncluding": "12.5.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.8.5:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.8.5", "versionStartIncluding": "12.8.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.1.5:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.1.5", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.6.5:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.6.5", "versionStartIncluding": "12.6.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.7.4:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.7.4", "versionStartIncluding": "12.7.0", "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "20210324 Cisco Jabber Desktop and Mobile Client Software Vulnerabilities", "refsource": "CISCO", "tags": ["Vendor Advisory"], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"}], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6}, "cpe23": [], "cwe": ["CWE-200"], "scheme": null, "immutableFields": []}, {"id": "CVE-2021-1418", "bulletinFamily": "NVD", "title": "CVE-2021-1418", "description": "Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.", "published": "2021-03-24T21:15:00", "modified": "2021-03-29T17:46:00", "cvss": {"score": 4.0, "vector": "AV:N/AC:L/Au:S/C:N/I:N/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1418", "reporter": "psirt@cisco.com", "references": ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"], "cvelist": ["CVE-2021-1418"], "type": "cve", "lastseen": "2021-04-28T11:49:15", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.8.7"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.8.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.9.6"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.7.4"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.6.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.1.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "le", "version": "12.9.0"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "le", "version": "12.9.0"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.5.4"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.9.5"}], "bulletinFamily": "NVD", "cpe": ["cpe:/a:cisco:jabber:12.9.0"], "cpe23": ["cpe:2.3:a:cisco:jabber:12.9.0:*:*:*:*:android:*:*", "cpe:2.3:a:cisco:jabber:12.9.0:*:*:*:*:iphone_os:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.6.5:*:*:*:*:windows:*:*", "versionEndExcluding": "12.6.5", "versionStartIncluding": "12.6.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.5.4:*:*:*:*:windows:*:*", "versionEndExcluding": "12.5.4", "versionStartIncluding": "12.5.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.6:*:*:*:*:macos:*:*", "versionEndExcluding": "12.9.6", "versionStartIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.0:*:*:*:*:android:*:*", "versionEndIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.8.5:*:*:*:*:windows:*:*", "versionEndExcluding": "12.8.5", "versionStartIncluding": "12.8.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.5:*:*:*:*:windows:*:*", "versionEndExcluding": "12.9.5", "versionStartIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.8.7:*:*:*:*:macos:*:*", "versionEndExcluding": "12.8.7", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.0:*:*:*:*:iphone_os:*:*", "versionEndIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.1.5:*:*:*:*:windows:*:*", "versionEndExcluding": "12.1.5", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.7.4:*:*:*:*:windows:*:*", "versionEndExcluding": "12.7.4", "versionStartIncluding": "12.7.0", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-1418"], "cvss": {"score": 4.0, "vector": "AV:N/AC:L/Au:S/C:N/I:N/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 4.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6}, "cwe": ["CWE-170"], "description": "Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.", "edition": 2, "enchantments": {"dependencies": {"modified": "2021-03-30T12:45:28", "references": [{"idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"], "type": "thn"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"], "type": "cisco"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2021-03-30T12:45:28", "rev": 2, "value": 4.4, "vector": "NONE"}, "twitter": {"counter": 5, "modified": "2021-03-25T12:44:21", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1376595109677051904", "text": " NEW: CVE-2021-1418 Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying op... (click for more) Severity: MEDIUM https://t.co/d6XmS2Dge4?amp=1"}, {"link": "https://twitter.com/CVEannounce/status/1375463300721442821", "text": "CVE-2021-1411, CVE-2021-1417, CVE-2021-1418, CVE-2021-1469, CVE-2021-1471"}, {"link": "https://twitter.com/eyalestrin/status/1375705156159963137", "text": "Cisco Jabber Desktop and Mobile Client Software Vulnerabilities (CVE-2021-1411, CVE-2021-1417, CVE-2021-1418)"}, {"link": "https://twitter.com/autumn_good_35/status/1375064226352427009", "text": "XMPP\u30e1\u30c3\u30bb\u30fc\u30b8\u3092\u9001\u308c\u308b\u3053\u3068\u304c\u6761\u4ef6\n\n\u300eallow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges,\u300f\n\nCVE-2021-1411\nCVE-2021-1417\nCVE-2021-1418\nCisco Jabber Desktop and Mobile Client Software Vulnerabilities\nhttps://t.co/9pFX4Gcn69?amp=1"}, {"link": "https://twitter.com/autumn_good_35/status/1375064226352427009", "text": "XMPP\u30e1\u30c3\u30bb\u30fc\u30b8\u3092\u9001\u308c\u308b\u3053\u3068\u304c\u6761\u4ef6\n\n\u300eallow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges,\u300f\n\nCVE-2021-1411\nCVE-2021-1417\nCVE-2021-1418\nCisco Jabber Desktop and Mobile Client Software Vulnerabilities\nhttps://t.co/9pFX4Gcn69?amp=1"}]}}, "extraReferences": [{"name": "20210324 Cisco Jabber Desktop and Mobile Client Software Vulnerabilities", "refsource": "CISCO", "tags": ["Vendor Advisory"], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"}], "hash": "35016ce4a8bfa6fde2f5e4b3f7fb3402b0f9be3cdfabfa69e7d0d2436ac07fa5", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "3a24dfd360218a9ca36afb3843751b95", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "c53c6ea4b1e6763349da72ed86f97caa", "key": "cpe23"}, {"hash": "0fd1a7fbb160b2eb8ae15a82ea1321ad", "key": "extraReferences"}, {"hash": "7176696c4f29688f6933f5cf8dc58049", "key": "cwe"}, {"hash": "5227e8cdd92a57ebd69ec1a3e31b0d87", "key": "cpeConfiguration"}, {"hash": "1bcb647a06ad0819f9bd3b139cc663f4", "key": "modified"}, {"hash": "23cf199738e1a8bfeb155dee12c3b681", "key": "cvss3"}, {"hash": "5a5801a64ae45790d923dbf04d81fc65", "key": "title"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "9a703ca9a59fd0b365fc45a1b4133e33", "key": "description"}, {"hash": "dd094f18d7429c7d60c8e179a6c7bad1", "key": "cpe"}, {"hash": "914859e1ddc65cafb101f901efb17ccc", "key": "published"}, {"hash": "1b2273bd181a620820bb59650de32149", "key": "affectedSoftware"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "97648f682d0b3cc49c9db51b91556bde", "key": "cvss2"}, {"hash": "6fa7676a7c3dd5a20fd508470d80491b", "key": "cvelist"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "da8500b902f7168f1a88caa30f5d3f83", "key": "href"}, {"hash": "b0b0bcd0f28ac63fe980c5964ddd8a20", "key": "references"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1418", "id": "CVE-2021-1418", "immutableFields": [], "lastseen": "2021-03-30T12:45:28", "modified": "2021-03-29T17:46:00", "objectVersion": "1.5", "published": "2021-03-24T21:15:00", "references": ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"], "reporter": "cve@mitre.org", "title": "CVE-2021-1418", "type": "cve", "viewCount": 12}, "different_elements": ["reporter", "cpeConfiguration"], "edition": 2, "lastseen": "2021-03-30T12:45:28"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "cvelist": ["CVE-2021-1418"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": ["CWE-170"], "description": "Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition. For more information about these vulnerabilities, see the Details section of this advisory.", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-03-25T12:44:21", "references": [{"idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"], "type": "thn"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"], "type": "cisco"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2021-03-25T12:44:21", "rev": 2, "value": 4.4, "vector": "NONE"}, "twitter": {"counter": 5, "modified": "2021-03-25T12:44:21", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1376595109677051904", "text": " NEW: CVE-2021-1418 Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying op... (click for more) Severity: MEDIUM https://t.co/d6XmS2Dge4?amp=1"}, {"link": "https://twitter.com/CVEannounce/status/1375463300721442821", "text": "CVE-2021-1411, CVE-2021-1417, CVE-2021-1418, CVE-2021-1469, CVE-2021-1471"}, {"link": "https://twitter.com/eyalestrin/status/1375705156159963137", "text": "Cisco Jabber Desktop and Mobile Client Software Vulnerabilities (CVE-2021-1411, CVE-2021-1417, CVE-2021-1418)"}, {"link": "https://twitter.com/autumn_good_35/status/1375064226352427009", "text": "XMPP\u30e1\u30c3\u30bb\u30fc\u30b8\u3092\u9001\u308c\u308b\u3053\u3068\u304c\u6761\u4ef6\n\n\u300eallow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges,\u300f\n\nCVE-2021-1411\nCVE-2021-1417\nCVE-2021-1418\nCisco Jabber Desktop and Mobile Client Software Vulnerabilities\nhttps://t.co/9pFX4Gcn69?amp=1"}, {"link": "https://twitter.com/autumn_good_35/status/1375064226352427009", "text": "XMPP\u30e1\u30c3\u30bb\u30fc\u30b8\u3092\u9001\u308c\u308b\u3053\u3068\u304c\u6761\u4ef6\n\n\u300eallow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges,\u300f\n\nCVE-2021-1411\nCVE-2021-1417\nCVE-2021-1418\nCisco Jabber Desktop and Mobile Client Software Vulnerabilities\nhttps://t.co/9pFX4Gcn69?amp=1"}]}}, "extraReferences": [{"name": "20210324 Cisco Jabber Desktop and Mobile Client Software Vulnerabilities", "refsource": "CISCO", "tags": [], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"}], "hash": "92a579e54a6d3bb570793d3a2a0f28702eafd288f9d15e2d77c6408b18a17de0", "hashmap": [{"hash": "b2c3e1e08b48ca2671dadb9ade5b1365", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "7176696c4f29688f6933f5cf8dc58049", "key": "cwe"}, {"hash": "5a5801a64ae45790d923dbf04d81fc65", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "9a703ca9a59fd0b365fc45a1b4133e33", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "914859e1ddc65cafb101f901efb17ccc", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "6fa7676a7c3dd5a20fd508470d80491b", "key": "cvelist"}, {"hash": "81342635da437da3b0897e10f103e0d6", "key": "cpeConfiguration"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "da8500b902f7168f1a88caa30f5d3f83", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "b0b0bcd0f28ac63fe980c5964ddd8a20", "key": "references"}, {"hash": "4808ece8dadfc23eb2b774ab5e1b855f", "key": "extraReferences"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1418", "id": "CVE-2021-1418", "lastseen": "2021-03-25T12:44:21", "modified": "2021-03-24T22:30:00", "objectVersion": "1.3", "published": "2021-03-24T21:15:00", "references": ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"], "reporter": "cve@mitre.org", "title": "CVE-2021-1418", "type": "cve", "viewCount": 11}, "differentElements": ["extraReferences", "cpe23", "cvss", "cvss3", "cvss2", "modified", "cpe", "affectedSoftware", "cpeConfiguration"], "edition": 1, "lastseen": "2021-03-25T12:44:21"}], "edition": 3, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "1b2273bd181a620820bb59650de32149"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "dd094f18d7429c7d60c8e179a6c7bad1"}, {"key": "cpe23", "hash": "c53c6ea4b1e6763349da72ed86f97caa"}, {"key": "cpeConfiguration", "hash": "64895e855ef5131845d92c3df1c321cc"}, {"key": "cvelist", "hash": "6fa7676a7c3dd5a20fd508470d80491b"}, {"key": "cvss", "hash": "3a24dfd360218a9ca36afb3843751b95"}, {"key": "cvss2", "hash": "97648f682d0b3cc49c9db51b91556bde"}, {"key": "cvss3", "hash": "23cf199738e1a8bfeb155dee12c3b681"}, {"key": "cwe", "hash": "7176696c4f29688f6933f5cf8dc58049"}, {"key": "description", "hash": "9a703ca9a59fd0b365fc45a1b4133e33"}, {"key": "extraReferences", "hash": "0fd1a7fbb160b2eb8ae15a82ea1321ad"}, {"key": "href", "hash": "da8500b902f7168f1a88caa30f5d3f83"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "1bcb647a06ad0819f9bd3b139cc663f4"}, {"key": "published", "hash": "914859e1ddc65cafb101f901efb17ccc"}, {"key": "references", "hash": "b0b0bcd0f28ac63fe980c5964ddd8a20"}, {"key": "reporter", "hash": "d23be448f90fb7586ac4c068c9a1027b"}, {"key": "title", "hash": "5a5801a64ae45790d923dbf04d81fc65"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "6ba8f54fba5dd679164d829c2ce58d14e8c88645a3cd447186918dff7a9442f6", "viewCount": 26, "enchantments": {"dependencies": {"references": [{"type": "metasploit", "idList": ["MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/"]}, {"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "nessus", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"]}, {"type": "kaspersky", "idList": ["KLA12132"]}], "modified": "2021-04-28T11:49:15", "rev": 2}, "score": {"value": 4.3, "vector": "NONE", "modified": "2021-04-28T11:49:15", "rev": 2}, "twitter": {"counter": 5, "modified": "2021-03-25T12:44:21", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1376595109677051904", "text": " NEW: CVE-2021-1418 Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying op... (click for more) Severity: MEDIUM https://t.co/d6XmS2Dge4?amp=1"}, {"link": "https://twitter.com/CVEannounce/status/1375463300721442821", "text": "CVE-2021-1411, CVE-2021-1417, CVE-2021-1418, CVE-2021-1469, CVE-2021-1471"}, {"link": "https://twitter.com/eyalestrin/status/1375705156159963137", "text": "Cisco Jabber Desktop and Mobile Client Software Vulnerabilities (CVE-2021-1411, CVE-2021-1417, CVE-2021-1418)"}, {"link": "https://twitter.com/autumn_good_35/status/1375064226352427009", "text": "XMPP\u30e1\u30c3\u30bb\u30fc\u30b8\u3092\u9001\u308c\u308b\u3053\u3068\u304c\u6761\u4ef6\n\n\u300eallow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges,\u300f\n\nCVE-2021-1411\nCVE-2021-1417\nCVE-2021-1418\nCisco Jabber Desktop and Mobile Client Software Vulnerabilities\nhttps://t.co/9pFX4Gcn69?amp=1"}, {"link": "https://twitter.com/autumn_good_35/status/1375064226352427009", "text": "XMPP\u30e1\u30c3\u30bb\u30fc\u30b8\u3092\u9001\u308c\u308b\u3053\u3068\u304c\u6761\u4ef6\n\n\u300eallow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges,\u300f\n\nCVE-2021-1411\nCVE-2021-1417\nCVE-2021-1418\nCisco Jabber Desktop and Mobile Client Software Vulnerabilities\nhttps://t.co/9pFX4Gcn69?amp=1"}]}}, "objectVersion": "1.5", "cpe": ["cpe:/a:cisco:jabber:12.9.0"], "affectedSoftware": [{"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.8.7"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.8.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.9.6"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.7.4"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.6.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.1.5"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "le", "version": "12.9.0"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "le", "version": "12.9.0"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.5.4"}, {"cpeName": "cisco:jabber", "name": "cisco jabber", "operator": "lt", "version": "12.9.5"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.5:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.9.5", "versionStartIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.8.7:*:*:*:*:macos:*:*", "cpe_name": [], "versionEndExcluding": "12.8.7", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.0:*:*:*:*:iphone_os:*:*", "cpe_name": [], "versionEndIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.6:*:*:*:*:macos:*:*", "cpe_name": [], "versionEndExcluding": "12.9.6", "versionStartIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.9.0:*:*:*:*:android:*:*", "cpe_name": [], "versionEndIncluding": "12.9.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.5.4:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.5.4", "versionStartIncluding": "12.5.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.8.5:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.8.5", "versionStartIncluding": "12.8.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.1.5:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.1.5", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.6.5:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.6.5", "versionStartIncluding": "12.6.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:jabber:12.7.4:*:*:*:*:windows:*:*", "cpe_name": [], "versionEndExcluding": "12.7.4", "versionStartIncluding": "12.7.0", "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "20210324 Cisco Jabber Desktop and Mobile Client Software Vulnerabilities", "refsource": "CISCO", "tags": ["Vendor Advisory"], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-jabber-PWrTATTC"}], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 4.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6}, "cpe23": ["cpe:2.3:a:cisco:jabber:12.9.0:*:*:*:*:android:*:*", "cpe:2.3:a:cisco:jabber:12.9.0:*:*:*:*:iphone_os:*:*"], "cwe": ["CWE-170"], "scheme": null, "immutableFields": []}], "metasploit": [{"id": "MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/", "hash": "a0f8302e19dcd121c1a4110ad96d749fd2dab49bb6b71efbd0a1f20146e29fcd", "type": "metasploit", "bulletinFamily": "exploit", "title": "Cisco Jabber: Cisco Jabber Certificate Validation Vulnerability (CVE-2021-1471)", "description": "\n", "published": "1976-01-01T00:00:00", "modified": "1976-01-01T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "href": "", "reporter": "Rapid7", "references": [], "cvelist": ["CVE-2021-1471"], "immutableFields": [], "lastseen": "2021-05-18T07:42:18", "history": [{"bulletin": {"bulletinFamily": "exploit", "cvelist": ["CVE-2021-1471"], "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "description": "\n", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-05-18T07:42:18", "references": [{"idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"], "type": "thn"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"], "type": "cisco"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"], "type": "nessus"}, {"idList": ["CVE-2021-1471"], "type": "cve"}], "rev": 2}, "score": {"modified": "2021-05-18T07:42:18", "rev": 2, "value": 5.9, "vector": "NONE"}}, "hash": "08b4ea55d187c0f349edaa31aa1679f6d175d8e5d937fcea4ebf28414688052c", "hashmap": [{"hash": "501b99596c4a2791b470cf17dc7209c2", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "708697c63f7eb369319c6523380bdf7a", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "68b329da9893e34099c7d8ad5cb9c940", "key": "description"}, {"hash": "4cac367be6dd8242802053610be9dee6", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "501b99596c4a2791b470cf17dc7209c2", "key": "modified"}, {"hash": "74798933f90c8c8a3dcac277d7c31e76", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "6719951e37a5b7c4b959f8df50c9d641", "key": "type"}, {"hash": "39b602fea10e82dd3589a4a6faa1aed1", "key": "cvelist"}, {"hash": "b59b1e10b2c9a51cfb56412e4906b2c4", "key": "title"}], "history": [], "href": "", "id": "MSF:ILITIES/CISCO-JABBER-CVE-2021-1471/", "immutableFields": [], "lastseen": "2021-05-18T07:42:18", "modified": "1976-01-01T00:00:00", "objectVersion": "1.5", "published": "1976-01-01T00:00:00", "references": [], "reporter": "Rapid7", "title": "Cisco Jabber: Cisco Jabber Certificate Validation Vulnerability (CVE-2021-1471)", "type": "metasploit", "viewCount": 0}, "different_elements": ["cvss3", "cvss2"], "edition": 1, "lastseen": "2021-05-18T07:42:18"}], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-1471"]}, {"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "nessus", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"]}, {"type": "kaspersky", "idList": ["KLA12132"]}], "modified": "2021-05-18T07:42:18", "rev": 2}, "score": {"value": 6.0, "vector": "NONE", "modified": "2021-05-18T07:42:18", "rev": 2}}, "objectVersion": "1.5", "sourceHref": "", "sourceData": "", "metasploitReliability": "", "metasploitHistory": "", "_object_type": "robots.models.metasploit.MetasploitBulletin", "_object_types": ["robots.models.metasploit.MetasploitBulletin", "robots.models.base.Bulletin"], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.6, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 3.4}, "edition": 2, "hashmap": [{"key": "bulletinFamily", "hash": "708697c63f7eb369319c6523380bdf7a"}, {"key": "cvelist", "hash": "39b602fea10e82dd3589a4a6faa1aed1"}, {"key": "cvss", "hash": "4cac367be6dd8242802053610be9dee6"}, {"key": "cvss2", "hash": "99f49eef72944845d11ae2782a859a6c"}, {"key": "cvss3", "hash": "bd061ed0c0de0037c1b9d96627bc8ea7"}, {"key": "description", "hash": "68b329da9893e34099c7d8ad5cb9c940"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "501b99596c4a2791b470cf17dc7209c2"}, {"key": "published", "hash": "501b99596c4a2791b470cf17dc7209c2"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "74798933f90c8c8a3dcac277d7c31e76"}, {"key": "title", "hash": "b59b1e10b2c9a51cfb56412e4906b2c4"}, {"key": "type", "hash": "6719951e37a5b7c4b959f8df50c9d641"}], "scheme": null}, {"id": "MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/", "hash": "ee6b1dd66a6f43e34f242a8c85688f597fc4b4a2cc4e082ad836a6d3abac1fa1", "type": "metasploit", "bulletinFamily": "exploit", "title": "Cisco Jabber: Cisco Jabber Information Disclosure Vulnerability (CVE-2021-1417)", "description": "\n", "published": "1976-01-01T00:00:00", "modified": "1976-01-01T00:00:00", "cvss": {"score": 4.0, "vector": "AV:N/AC:L/Au:S/C:P/I:N/A:N"}, "href": "", "reporter": "Rapid7", "references": [], "cvelist": ["CVE-2021-1417"], "immutableFields": [], "lastseen": "2021-05-18T07:42:08", "history": [{"bulletin": {"bulletinFamily": "exploit", "cvelist": ["CVE-2021-1417"], "cvss": {"score": 4.0, "vector": "AV:N/AC:L/Au:S/C:P/I:N/A:N"}, "cvss2": {}, "cvss3": {}, "description": "\n", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-05-18T07:42:08", "references": [{"idList": ["CVE-2021-1417"], "type": "cve"}, {"idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"], "type": "thn"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"], "type": "cisco"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2021-05-18T07:42:08", "rev": 2, "value": 5.2, "vector": "NONE"}}, "hash": "9e76b741274fa0c70224a945cfef9334a30f3a3685dfa8e06106be12ea73ac14", "hashmap": [{"hash": "501b99596c4a2791b470cf17dc7209c2", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "708697c63f7eb369319c6523380bdf7a", "key": "bulletinFamily"}, {"hash": "42024cba1d0fbdb593ce726a2dca24dc", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "68b329da9893e34099c7d8ad5cb9c940", "key": "description"}, {"hash": "35cd82bd52115cd02b74264697add437", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "501b99596c4a2791b470cf17dc7209c2", "key": "modified"}, {"hash": "74798933f90c8c8a3dcac277d7c31e76", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "6719951e37a5b7c4b959f8df50c9d641", "key": "type"}, {"hash": "e258b79b31d39a327c9dafeb61b7a729", "key": "cvss"}], "history": [], "href": "", "id": "MSF:ILITIES/CISCO-JABBER-CVE-2021-1417/", "immutableFields": [], "lastseen": "2021-05-18T07:42:08", "modified": "1976-01-01T00:00:00", "objectVersion": "1.5", "published": "1976-01-01T00:00:00", "references": [], "reporter": "Rapid7", "title": "Cisco Jabber: Cisco Jabber Information Disclosure Vulnerability (CVE-2021-1417)", "type": "metasploit", "viewCount": 0}, "different_elements": ["cvss3", "cvss2"], "edition": 1, "lastseen": "2021-05-18T07:42:08"}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-1417"]}, {"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "nessus", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"]}, {"type": "kaspersky", "idList": ["KLA12132"]}], "modified": "2021-05-18T07:42:08", "rev": 2}, "score": {"value": 5.2, "vector": "NONE", "modified": "2021-05-18T07:42:08", "rev": 2}}, "objectVersion": "1.5", "sourceHref": "", "sourceData": "", "metasploitReliability": "", "metasploitHistory": "", "_object_type": "robots.models.metasploit.MetasploitBulletin", "_object_types": ["robots.models.metasploit.MetasploitBulletin", "robots.models.base.Bulletin"], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6}, "edition": 2, "hashmap": [{"key": "bulletinFamily", "hash": "708697c63f7eb369319c6523380bdf7a"}, {"key": "cvelist", "hash": "42024cba1d0fbdb593ce726a2dca24dc"}, {"key": "cvss", "hash": "e258b79b31d39a327c9dafeb61b7a729"}, {"key": "cvss2", "hash": "07a69fb94693e6a2da876529ddd1e0ec"}, {"key": "cvss3", "hash": "e8d0af68bb102357c1a66383d1243ed9"}, {"key": "description", "hash": "68b329da9893e34099c7d8ad5cb9c940"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "501b99596c4a2791b470cf17dc7209c2"}, {"key": "published", "hash": "501b99596c4a2791b470cf17dc7209c2"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "74798933f90c8c8a3dcac277d7c31e76"}, {"key": "title", "hash": "35cd82bd52115cd02b74264697add437"}, {"key": "type", "hash": "6719951e37a5b7c4b959f8df50c9d641"}], "scheme": null}, {"id": "MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/", "hash": "197297c3baba5ed46dc18d391df37e004b78e363f2f9620bb6f21c6bd4703b21", "type": "metasploit", "bulletinFamily": "exploit", "title": "Cisco Jabber: Cisco Jabber Arbitrary Program Execution Vulnerability (CVE-2021-1411)", "description": "\n", "published": "1976-01-01T00:00:00", "modified": "1976-01-01T00:00:00", "cvss": {"score": 9.0, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "href": "", "reporter": "Rapid7", "references": [], "cvelist": ["CVE-2021-1411"], "immutableFields": [], "lastseen": "2021-05-18T07:42:07", "history": [{"bulletin": {"bulletinFamily": "exploit", "cvelist": ["CVE-2021-1411"], "cvss": {"score": 9.0, "vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "description": "\n", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-05-18T07:42:07", "references": [{"idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"], "type": "thn"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"], "type": "cisco"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"], "type": "nessus"}, {"idList": ["CVE-2021-1411"], "type": "cve"}], "rev": 2}, "score": {"modified": "2021-05-18T07:42:07", "rev": 2, "value": 6.5, "vector": "NONE"}}, "hash": "1ff887edb06f0051508c6307ddf1ebebbd594412a09cc89867bc2599f40b96f2", "hashmap": [{"hash": "6ede5bd9aff4d634e932368951bdf6bb", "key": "title"}, {"hash": "501b99596c4a2791b470cf17dc7209c2", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "708697c63f7eb369319c6523380bdf7a", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "68b329da9893e34099c7d8ad5cb9c940", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "501b99596c4a2791b470cf17dc7209c2", "key": "modified"}, {"hash": "74798933f90c8c8a3dcac277d7c31e76", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "6719951e37a5b7c4b959f8df50c9d641", "key": "type"}, {"hash": "62e86bb7716385cd46817416916a7bbd", "key": "cvss"}, {"hash": "dfafb65575baec531c41a462fb64ca83", "key": "cvelist"}], "history": [], "href": "", "id": "MSF:ILITIES/CISCO-JABBER-CVE-2021-1411/", "immutableFields": [], "lastseen": "2021-05-18T07:42:07", "modified": "1976-01-01T00:00:00", "objectVersion": "1.5", "published": "1976-01-01T00:00:00", "references": [], "reporter": "Rapid7", "title": "Cisco Jabber: Cisco Jabber Arbitrary Program Execution Vulnerability (CVE-2021-1411)", "type": "metasploit", "viewCount": 2}, "different_elements": ["cvss3", "cvss2"], "edition": 1, "lastseen": "2021-05-18T07:42:07"}], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-1411"]}, {"type": "kaspersky", "idList": ["KLA12132"]}, {"type": "nessus", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"]}, {"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}], "modified": "2021-05-18T07:42:07", "rev": 2}, "score": {"value": 6.6, "vector": "NONE", "modified": "2021-05-18T07:42:07", "rev": 2}}, "objectVersion": "1.5", "sourceHref": "", "sourceData": "", "metasploitReliability": "", "metasploitHistory": "", "_object_type": "robots.models.metasploit.MetasploitBulletin", "_object_types": ["robots.models.metasploit.MetasploitBulletin", "robots.models.base.Bulletin"], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 9.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.9, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 6.0}, "edition": 2, "hashmap": [{"key": "bulletinFamily", "hash": "708697c63f7eb369319c6523380bdf7a"}, {"key": "cvelist", "hash": "dfafb65575baec531c41a462fb64ca83"}, {"key": "cvss", "hash": "62e86bb7716385cd46817416916a7bbd"}, {"key": "cvss2", "hash": "326bb90a9de8254bb7b400e76890967f"}, {"key": "cvss3", "hash": "f93d254aafa3092ea754b1e134c92d15"}, {"key": "description", "hash": "68b329da9893e34099c7d8ad5cb9c940"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "501b99596c4a2791b470cf17dc7209c2"}, {"key": "published", "hash": "501b99596c4a2791b470cf17dc7209c2"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "74798933f90c8c8a3dcac277d7c31e76"}, {"key": "title", "hash": "6ede5bd9aff4d634e932368951bdf6bb"}, {"key": "type", "hash": "6719951e37a5b7c4b959f8df50c9d641"}], "scheme": null}, {"id": "MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/", "hash": "430f3b33be3c7403dffe10823c4967777d9b7a2224f02e506447dd1bc5873320", "type": "metasploit", "bulletinFamily": "exploit", "title": "Cisco Jabber: Cisco Jabber Arbitrary Program Execution Vulnerability (CVE-2021-1469)", "description": "\n", "published": "1976-01-01T00:00:00", "modified": "1976-01-01T00:00:00", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "href": "", "reporter": "Rapid7", "references": [], "cvelist": ["CVE-2021-1469"], "immutableFields": [], "lastseen": "2021-05-18T07:42:08", "history": [{"bulletin": {"bulletinFamily": "exploit", "cvelist": ["CVE-2021-1469"], "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "description": "\n", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-05-18T07:42:08", "references": [{"idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"], "type": "thn"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"], "type": "cisco"}, {"idList": ["CVE-2021-1469"], "type": "cve"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2021-05-18T07:42:08", "rev": 2, "value": 6.5, "vector": "NONE"}}, "hash": "fef2efe962bcaba087720f1400fc4b28188bee1e51ae8e1617a1c3f3a16d30c3", "hashmap": [{"hash": "501b99596c4a2791b470cf17dc7209c2", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "708697c63f7eb369319c6523380bdf7a", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "0187fd86f792b6c1e0077d0f69d0ed79", "key": "cvss"}, {"hash": "5e31de1deaffaf8c31ccc241b61aec0d", "key": "cvelist"}, {"hash": "68b329da9893e34099c7d8ad5cb9c940", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "501b99596c4a2791b470cf17dc7209c2", "key": "modified"}, {"hash": "74798933f90c8c8a3dcac277d7c31e76", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "6719951e37a5b7c4b959f8df50c9d641", "key": "type"}, {"hash": "d0151d0e39dc781c4dddba464d29e2e4", "key": "title"}], "history": [], "href": "", "id": "MSF:ILITIES/CISCO-JABBER-CVE-2021-1469/", "immutableFields": [], "lastseen": "2021-05-18T07:42:08", "modified": "1976-01-01T00:00:00", "objectVersion": "1.5", "published": "1976-01-01T00:00:00", "references": [], "reporter": "Rapid7", "title": "Cisco Jabber: Cisco Jabber Arbitrary Program Execution Vulnerability (CVE-2021-1469)", "type": "metasploit", "viewCount": 1}, "different_elements": ["cvss3", "cvss2"], "edition": 1, "lastseen": "2021-05-18T07:42:08"}], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-1469"]}, {"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "nessus", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"]}, {"type": "kaspersky", "idList": ["KLA12132"]}], "modified": "2021-05-18T07:42:08", "rev": 2}, "score": {"value": 6.6, "vector": "NONE", "modified": "2021-05-18T07:42:08", "rev": 2}}, "objectVersion": "1.5", "sourceHref": "", "sourceData": "", "metasploitReliability": "", "metasploitHistory": "", "_object_type": "robots.models.metasploit.MetasploitBulletin", "_object_types": ["robots.models.metasploit.MetasploitBulletin", "robots.models.base.Bulletin"], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 5.9}, "edition": 2, "hashmap": [{"key": "bulletinFamily", "hash": "708697c63f7eb369319c6523380bdf7a"}, {"key": "cvelist", "hash": "5e31de1deaffaf8c31ccc241b61aec0d"}, {"key": "cvss", "hash": "0187fd86f792b6c1e0077d0f69d0ed79"}, {"key": "cvss2", "hash": "3bf2877e19b91d4143ea460e43ce9041"}, {"key": "cvss3", "hash": "6761e092e94201d39ddfd380a6b7119f"}, {"key": "description", "hash": "68b329da9893e34099c7d8ad5cb9c940"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "501b99596c4a2791b470cf17dc7209c2"}, {"key": "published", "hash": "501b99596c4a2791b470cf17dc7209c2"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "74798933f90c8c8a3dcac277d7c31e76"}, {"key": "title", "hash": "d0151d0e39dc781c4dddba464d29e2e4"}, {"key": "type", "hash": "6719951e37a5b7c4b959f8df50c9d641"}], "scheme": null}, {"id": "MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/", "hash": "d071c41cbf8a33164fa85759ab8ca4d9198f04488492e04e6a52bd2f8c706aae", "type": "metasploit", "bulletinFamily": "exploit", "title": "Cisco Jabber: Cisco Jabber Denial of Service Vulnerability (CVE-2021-1418)", "description": "\n", "published": "1976-01-01T00:00:00", "modified": "1976-01-01T00:00:00", "cvss": {"score": 4.0, "vector": "AV:N/AC:L/Au:S/C:N/I:N/A:P"}, "href": "", "reporter": "Rapid7", "references": [], "cvelist": ["CVE-2021-1418"], "immutableFields": [], "lastseen": "2021-05-18T07:42:05", "history": [{"bulletin": {"bulletinFamily": "exploit", "cvelist": ["CVE-2021-1418"], "cvss": {"score": 4.0, "vector": "AV:N/AC:L/Au:S/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "description": "\n", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-05-18T07:42:05", "references": [{"idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"], "type": "thn"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"], "type": "cisco"}, {"idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"], "type": "nessus"}, {"idList": ["CVE-2021-1418"], "type": "cve"}], "rev": 2}, "score": {"modified": "2021-05-18T07:42:05", "rev": 2, "value": 5.4, "vector": "NONE"}}, "hash": "6fe25b777b451b2d492f6d236354c577102bb5953bbfa3699ad8fd9ab0276ca8", "hashmap": [{"hash": "501b99596c4a2791b470cf17dc7209c2", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "708697c63f7eb369319c6523380bdf7a", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "3a24dfd360218a9ca36afb3843751b95", "key": "cvss"}, {"hash": "68b329da9893e34099c7d8ad5cb9c940", "key": "description"}, {"hash": "08e1c218735d918e30eab7e21c661d61", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "501b99596c4a2791b470cf17dc7209c2", "key": "modified"}, {"hash": "74798933f90c8c8a3dcac277d7c31e76", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "6719951e37a5b7c4b959f8df50c9d641", "key": "type"}, {"hash": "6fa7676a7c3dd5a20fd508470d80491b", "key": "cvelist"}], "history": [], "href": "", "id": "MSF:ILITIES/CISCO-JABBER-CVE-2021-1418/", "immutableFields": [], "lastseen": "2021-05-18T07:42:05", "modified": "1976-01-01T00:00:00", "objectVersion": "1.5", "published": "1976-01-01T00:00:00", "references": [], "reporter": "Rapid7", "title": "Cisco Jabber: Cisco Jabber Denial of Service Vulnerability (CVE-2021-1418)", "type": "metasploit", "viewCount": 0}, "different_elements": ["cvss3", "cvss2"], "edition": 1, "lastseen": "2021-05-18T07:42:05"}], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-1418"]}, {"type": "thn", "idList": ["THN:571D82BCDF8B3E11D0F9AB26BF0B5CAB"]}, {"type": "cisco", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC"]}, {"type": "nessus", "idList": ["CISCO-SA-CISCO-JABBER-PWRTATTC.NASL"]}, {"type": "kaspersky", "idList": ["KLA12132"]}], "modified": "2021-05-18T07:42:05", "rev": 2}, "score": {"value": 5.5, "vector": "NONE", "modified": "2021-05-18T07:42:05", "rev": 2}}, "objectVersion": "1.5", "sourceHref": "", "sourceData": "", "metasploitReliability": "", "metasploitHistory": "", "_object_type": "robots.models.metasploit.MetasploitBulletin", "_object_types": ["robots.models.metasploit.MetasploitBulletin", "robots.models.base.Bulletin"], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 4.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6}, "edition": 2, "hashmap": [{"key": "bulletinFamily", "hash": "708697c63f7eb369319c6523380bdf7a"}, {"key": "cvelist", "hash": "6fa7676a7c3dd5a20fd508470d80491b"}, {"key": "cvss", "hash": "3a24dfd360218a9ca36afb3843751b95"}, {"key": "cvss2", "hash": "97648f682d0b3cc49c9db51b91556bde"}, {"key": "cvss3", "hash": "23cf199738e1a8bfeb155dee12c3b681"}, {"key": "description", "hash": "68b329da9893e34099c7d8ad5cb9c940"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "501b99596c4a2791b470cf17dc7209c2"}, {"key": "published", "hash": "501b99596c4a2791b470cf17dc7209c2"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "74798933f90c8c8a3dcac277d7c31e76"}, {"key": "title", "hash": "08e1c218735d918e30eab7e21c661d61"}, {"key": "type", "hash": "6719951e37a5b7c4b959f8df50c9d641"}], "scheme": null}]}
