2970 matches found
CVE-2012-3057
Heap-based buffer overflow in the Cisco WebEx Recording Format WRF player T27 L through SP11 EP26, T27 LB through SP21 EP10, T27 LC before SP25 EP11, T27 LD before SP32 CP2, and T28 L10N before SP1 allows remote attackers to execute arbitrary code via a crafted size field in audio data within a W...
CVE-2012-3056
Buffer overflow in the Cisco WebEx Recording Format WRF player T27 L through SP11 EP26, T27 LB through SP21 EP10, T27 LC before SP25 EP11, T27 LD before SP32 CP2, and T28 L10N before SP1 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted...
CVE-2012-3054
Heap-based buffer overflow in the Cisco WebEx Recording Format WRF player T27 L through SP11 EP26, T27 LB through SP21 EP10, T27 LC before SP25 EP11, T27 LD before SP32 CP2, and T28 L10N before SP1 allows remote attackers to execute arbitrary code via a crafted WRF file, aka Bug ID CSCtz72977...
CVE-2013-1244
Cross-site scripting XSS vulnerability in the portal module in Cisco WebEx Social allows remote authenticated users to inject arbitrary web script or HTML via a javascript: URL in the link field in a post, aka Bug ID CSCue67199...
CVE-2013-1205
The Event Center module in Cisco WebEx Meetings Server does not perform request authentication in all intended circumstances, which allows remote attackers to discover host keys and event passwords via crafted URLs, aka Bug ID CSCue62485...
CVE-2013-1117
Buffer overflow in the exception handler in Cisco WebEx Recording Format WRF player T27 LD before SP32 EP16, T27 L10N before SP32ORION111, and T28 before T28.8 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted WRF file, aka Bug ID...
CVE-2013-3392
Multiple cross-site request forgery CSRF vulnerabilities in Cisco WebEx Social allow remote attackers to hijack the authentication of arbitrary users via unspecified vectors, aka Bug IDs CSCuh10405 and CSCuh10355...
CVE-2013-1245
The user-management page in Cisco WebEx Social relies on client-side validation of values in the Screen Name, First Name, Middle Name, Last Name, Email Address, and Job Title fields, which allows remote authenticated users to bypass intended access restrictions via crafted requests, aka Bug ID...
CVE-2012-3053
Buffer overflow in the Cisco WebEx Advanced Recording Format ARF player T27 L through SP11 EP26, T27 LB through SP21 EP10, T27 LC before SP25 EP11, T27 LD before SP32 CP2, and T28 L10N before SP1 allows remote attackers to execute arbitrary code via a crafted ARF file, aka Bug ID CSCtz72985...
CVE-2025-20250
A vulnerability in Cisco Webex could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. A vulnerability is due to improper filtering of user-supplied input. An attacker could exploit this vulnerability by persuading a user to follow a malicious link. A...
CVE-2025-20255
A vulnerability in client join services of Cisco Webex Meetings could allow an unauthenticated, remote attacker to manipulate cached HTTP responses within the meeting join service. This vulnerability is due to improper handling of malicious HTTP requests to the affected service. An attacker could...
CVE-2025-20246
A vulnerability in Cisco Webex could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. A vulnerability is due to improper filtering of user-supplied input. An attacker could exploit this vulnerability by persuading a user to follow a malicious link. A...
CVE-2025-20247
A vulnerability in Cisco Webex could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. A vulnerability is due to improper filtering of user-supplied input. An attacker could exploit this vulnerability by persuading a user to follow a malicious link. A...
CVE-2025-20250
A vulnerability in Cisco Webex could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. A vulnerability is due to improper filtering of user-supplied input. An attacker could exploit this vulnerability by persuading a user to follow a malicious link. A...
CVE-2025-20250
Cisco Webex contains a cross-site scripting (XSS) vulnerability due to improper filtering of user-supplied input. An unauthenticated, remote attacker can entice a user to click a malicious link, potentially enabling XSS against the targeted user. The vulnerability is reflected in multiple sources...
CVE-2025-20250
A vulnerability in Cisco Webex could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. A vulnerability is due to improper filtering of user-supplied input. An attacker could exploit this vulnerability by persuading a user to follow a malicious link. A...
CVE-2025-20247
Cisco Webex is affected by CVE-2025-20247, a cross-site scripting (XSS) vulnerability caused by improper filtering of user input. An unauthenticated, remote attacker can lure a user to a malicious link, potentially executing script in the victim’s context. The issue impacts Cisco Webex’s handling...
CVE-2025-20247
A vulnerability in Cisco Webex could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. A vulnerability is due to improper filtering of user-supplied input. An attacker could exploit this vulnerability by persuading a user to follow a malicious link. A...
CVE-2025-20247
A vulnerability in Cisco Webex could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. A vulnerability is due to improper filtering of user-supplied input. An attacker could exploit this vulnerability by persuading a user to follow a malicious link. A...
CVE-2025-20246
CVE-2025-20246 – Cisco Webex XSS vulnerability : The connected sources confirm a cross-site scripting flaw in Cisco Webex caused by improper filtering of user input, exploitable when a user clicks a malicious link. The CVE entry notes unauthenticated, remote access with network attack vector and ...