2970 matches found
CVE-2025-20246
A vulnerability in Cisco Webex could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. A vulnerability is due to improper filtering of user-supplied input. An attacker could exploit this vulnerability by persuading a user to follow a malicious link. A...
CVE-2025-20246
A vulnerability in Cisco Webex could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. A vulnerability is due to improper filtering of user-supplied input. An attacker could exploit this vulnerability by persuading a user to follow a malicious link. A...
CVE-2025-20255
CVE-2025-20255 affects Cisco Webex Meetings, specifically the client join services. The issue arises from improper handling of malicious HTTP requests, enabling HTTP cache poisoning where stored HTTP responses could be manipulated and cause the Webex Meetings service to return incorrect responses...
CVE-2025-20255
A vulnerability in client join services of Cisco Webex Meetings could allow an unauthenticated, remote attacker to manipulate cached HTTP responses within the meeting join service. This vulnerability is due to improper handling of malicious HTTP requests to the affected service. An attacker could...
CVE-2025-20255
A vulnerability in client join services of Cisco Webex Meetings could allow an unauthenticated, remote attacker to manipulate cached HTTP responses within the meeting join service. This vulnerability is due to improper handling of malicious HTTP requests to the affected service. An attacker could...
Cisco Webex Services Cross-Site Scripting Vulnerabilities
Multiple vulnerabilities in Cisco Webex could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. These vulnerabilities are due to improper filtering of user-supplied input. An attacker could exploit these vulnerabilities by persuading a user to follow a...
Cisco Webex Meetings Services HTTP Cache Poisoning Vulnerability
A vulnerability in client join services of Cisco Webex Meetings could allow an unauthenticated, remote attacker to manipulate cached HTTP responses within the meeting join service. This vulnerability is due to improper handling of malicious HTTP requests to the affected service. An attacker could...
PT-2025-22396
Name of the Vulnerable Software and Affected Versions Cisco Webex Meetings affected versions not specified Description A flaw exists in the client join services of Cisco Webex Meetings that could allow a remote, unauthenticated attacker to manipulate cached HTTP responses within the service. This...
PT-2025-22394 · Cisco · Cisco Webex
Name of the Vulnerable Software and Affected Versions: Cisco Webex affected versions not specified Description: A vulnerability in Cisco Webex could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. The issue is due to improper filtering of user-supplied inpu...
Cisco Webex 跨站脚本漏洞
Cisco Webex is a suite of video conferencing and collaboration products from Cisco. A cross-site scripting vulnerability exists in Cisco Webex that stems from improper user input filtering and could lead to cross-site scripting attacks...
Cisco Webex 跨站脚本漏洞
Cisco Webex is a suite of video conferencing and collaboration products from Cisco. A cross-site scripting vulnerability exists in Cisco Webex that stems from improper user input filtering and could lead to cross-site scripting attacks...
PT-2025-22393 · Cisco · Cisco Webex
Name of the Vulnerable Software and Affected Versions: Cisco Webex affected versions not specified Description: A vulnerability in Cisco Webex could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. The issue is due to improper filtering of user-supplied inpu...
PT-2025-22395 · Cisco · Cisco Webex
Name of the Vulnerable Software and Affected Versions: Cisco Webex affected versions not specified Description: A vulnerability in Cisco Webex could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. The issue is due to improper filtering of user-supplied inpu...
Cisco Webex Meetings 安全漏洞
Cisco Webex Meetings is a videoconferencing solution from Cisco USA. A security vulnerability exists in Cisco Webex Meetings that stems from the improper handling of malicious HTTP requests, which could lead to HTTP cache poisoning...
Cisco Webex 跨站脚本漏洞
Cisco Webex is a suite of video conferencing and collaboration products from Cisco. A cross-site scripting vulnerability exists in Cisco Webex that stems from improper user input filtering and can be exploited by an attacker to cause a cross-site scripting attack...
Webex App for VDI not optimized
Webex App for VDI is working with fallback mode, instead of VDI-optimized mode...
PT-2025-18220 · Cisco · Cisco Webex Meeting Server
Name of the Vulnerable Software and Affected Versions: Cisco Webex Meeting Server affected versions not specified Description: The issue concerns an authentication bypass. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where...
CVE-2025-20236
A vulnerability in the custom URL parser of Cisco Webex App could allow an unauthenticated, remote attacker to persuade a user to download arbitrary files, which could allow the attacker to execute arbitrary commands on the host of the targeted user. This vulnerability is due to insufficient inpu...
PT-2025-17694 · Cisco · Cisco Webex Meeting Server
Name of the Vulnerable Software and Affected Versions: Cisco Webex Meeting Server affected versions not specified Description: The issue concerns an authentication bypass in Cisco Webex Meeting Server. No specific details about the estimated number of potentially affected devices worldwide or...
The vulnerability of the software URL processor for Cisco Webex App allows a perpetrator to execute arbitrary commands.
The vulnerability of the software URL processor for Cisco Webex App relates to the ability to download files from untrusted sources. Exploiting this vulnerability could allow a malicious actor to execute arbitrary commands when a user accesses a specially crafted link...