Lucene search
K

16 matches found

OSV
OSV
added 2019/02/07 9:29 p.m.5 views

CVE-2019-1680

A vulnerability in Cisco Webex Business Suite could allow an unauthenticated, remote attacker to inject arbitrary text into a user's browser. The vulnerability is due to improper validation of input. An attacker could exploit this vulnerability by convincing a targeted user to view a malicious UR...

4.3CVSS5.9AI score0.01412EPSS
Exploits0References2
NVD
NVD
added 2019/02/07 9:29 p.m.25 views

CVE-2019-1680

A vulnerability in Cisco Webex Business Suite could allow an unauthenticated, remote attacker to inject arbitrary text into a user's browser. The vulnerability is due to improper validation of input. An attacker could exploit this vulnerability by convincing a targeted user to view a malicious UR...

4.3CVSS4.8AI score0.01412EPSS
Exploits0References2
CNVD
CNVD
added 2019/01/11 12:0 a.m.1 views

Cisco Webex Business Suite Cross-Site Scripting Vulnerability

A cross-site scripting vulnerability exists in the MyWebex component of Cisco Webex Business Suite. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML via a specially crafted URL...

6.1CVSS5.9AI score0.01211EPSS
Exploits0References1
NVD
NVD
added 2019/01/10 11:29 p.m.20 views

CVE-2018-15461

A vulnerability in the MyWebex component of Cisco Webex Business Suite could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by convinci...

6.1CVSS6AI score0.01211EPSS
Exploits0References2
Prion
Prion
added 2019/01/10 11:29 p.m.23 views

Cross site scripting

A vulnerability in the MyWebex component of Cisco Webex Business Suite could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by convinci...

4.3CVSS5.9AI score0.01211EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2019/01/10 11:0 p.m.9 views

CVE-2018-15461 Cisco Webex Business Suite Cross-Site Scripting Vulnerability

A vulnerability in the MyWebex component of Cisco Webex Business Suite could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by convinci...

6.1CVSS5.9AI score0.01211EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/01/10 11:0 p.m.19 views

CVE-2018-15461 Cisco Webex Business Suite Cross-Site Scripting Vulnerability

A vulnerability in the MyWebex component of Cisco Webex Business Suite could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by convinci...

6.1CVSS6AI score0.01211EPSS
Exploits0References2
CVE
CVE
added 2019/01/10 11:0 p.m.53 views

CVE-2018-15461

Cisco Webex Business Suite (MyWebex component) contains a cross-site scripting (XSS) vulnerability due to insufficient input validation. An unauthenticated, remote attacker can lure a user to click a crafted URL, enabling injection of arbitrary web script or HTML. Exploitation relies on social en...

6.1CVSS6AI score0.01211EPSS
Exploits0References2Affected Software1
Cisco
Cisco
added 2019/01/09 4:0 p.m.59 views

Cisco Webex Business Suite Cross-Site Scripting Vulnerability

A vulnerability in the MyWebex component of Cisco Webex Business Suite could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by convinci...

6.1CVSS0.6AI score0.01211EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2018/05/17 12:0 a.m.8 views

The vulnerability of the recording mechanism in software for Cisco WebEx Business Suite and WebEx Meetings, as well as Cisco WebEx Meetings Server, allows a perpetrator to execute arbitrary code.

The vulnerability of the mechanism for reproducing records in the Advanced Recording Format ARF of Cisco WebEx Business Suite and WebEx Meetings software exists due to insufficient verification of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a...

10CVSS6AI score0.03206EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2018/01/04 6:29 a.m.3 views

CVE-2018-0104

A vulnerability in Cisco WebEx Network Recording Player for Advanced Recording Format ARF files could allow a remote attacker to execute arbitrary code on the system of a targeted user. The attacker could exploit this vulnerability by sending the user a link or email attachment with a malicious A...

9.6CVSS6.3AI score0.03774EPSS
Exploits0References3
CVE
CVE
added 2018/01/04 6:0 a.m.62 views

CVE-2018-0103

CVE-2018-0103 describes a buffer overflow in Cisco WebEx Network Recording Player when parsing ARF files, permitting arbitrary code execution with local access (per NVD) and potentially remote exploitation via crafted ARF content (per ZDI). Affected: Cisco WebEx Network Recording Player and relat...

9.3CVSS7.7AI score0.01715EPSS
Exploits0References2Affected Software4
CNVD
CNVD
added 2017/12/04 12:0 a.m.3 views

Cisco WebEx Business Suite meeting site and Cisco WebEx Meetings site WebEx Recording Format Player denial of service vulnerability

Cisco WebEx Business Suite meeting site and WebEx Meetings site are both videoconferencing solutions from the U.S. company Cisco Cisco.Cisco WebEx Recording Format WRF Player is used in one of the meeting recording player. A denial of service vulnerability exists in the Cisco WebEx WRF Player in...

4.3CVSS6.5AI score0.01009EPSS
Exploits0References1
CNVD
CNVD
added 2017/11/30 12:0 a.m.2 views

Remote Code Execution Vulnerability in Multiple Cisco Products (CNVD-2017-35725)

Cisco WebEx Business Suite WBS30 client and so on are the client software of the video conference solution of the United States Cisco Cisco Company.WebEx Recording Format Player WRF and Advanced Recording Format Player ARF are used in it. ARF are used in which the conference recording player. A...

9.6CVSS8.6AI score0.0298EPSS
Exploits0References1
Prion
Prion
added 2014/03/21 1:4 a.m.11 views

Design/Logic Flaw

WebEx Meeting Center in Cisco WebEx Business Suite does not properly compose URLs for HTTP GET requests, which allows remote attackers to obtain sensitive information by reading 1 web-server access logs, 2 web-server Referer logs, or 3 a browser's history, aka Bug ID CSCul98272...

5CVSS6.8AI score0.01196EPSS
Exploits0References1
Cvelist
Cvelist
added 2014/03/20 8:0 p.m.15 views

CVE-2014-0708

WebEx Meeting Center in Cisco WebEx Business Suite does not properly compose URLs for HTTP GET requests, which allows remote attackers to obtain sensitive information by reading 1 web-server access logs, 2 web-server Referer logs, or 3 a browser's history, aka Bug ID CSCul98272...

6.2AI score0.01196EPSS
Exploits0References1
Rows per page
Query Builder