2 matches found
The vulnerability in the implementation of the Extensible Messaging and Presence Protocol (XMPP) in Cisco Jabber software platforms for Windows, macOS, Android and iOS, as well as Cisco Jabber for Android MAM and Cisco Jabber for iOS MAM, allows a attacker to send hidden HTTP requests (HTTP Request Smuggling attack).
The vulnerability of the XMPP protocol implementation in Cisco Jabber software for Windows, Cisco Jabber for MacOS, Cisco Jabber for Android and iOS, Cisco Jabber for Android MAM, and Cisco Jabber for iOS MAM lies in the exposure to information disclosure in error-prone data areas. Exploiting thi...
Vulnerability fixed in Cisco Jabber
Cisco has fixed a vulnerability in the Jabber clients for Windows, macOS, iOS and Android. A malicious party could potentially exploit the vulnerability to use nested XMPP messages to manipulate the behavior of the vulnerable client and thus potentially gain access to sensitive data or, as Cisco...