CVE-2021-1242 Cisco Webex Teams Shared File Manipulation Vulnerability

A vulnerability in Cisco Webex Teams could allow an unauthenticated, remote attacker to manipulate file names within the messaging interface. The vulnerability exists because the affected software mishandles character rendering. An attacker could exploit this vulnerability by sharing a file withi...

Cisco Jabber and Webex Client Software Shared File Manipulation Vulnerability

A vulnerability in Cisco Jabber and Cisco Webex formerly Teams could allow an unauthenticated, remote attacker to manipulate file names within the messaging interface. The vulnerability exists because the affected software mishandles character rendering. An attacker could exploit this vulnerabili...

Cisco Webex Meetings and Cisco Webex Meetings Server Host Key Brute Forcing Vulnerability

A vulnerability in the reclaim host role feature of Cisco Webex Meetings and Cisco Webex Meetings Server could allow an authenticated, remote attacker to take over the host role during a meeting. This vulnerability is due to a lack of protection against brute forcing of the host key. An attacker...

Cisco Webex Meetings Open Redirect Vulnerability

A vulnerability in the web-based management interface of Cisco Webex Meetings could allow an unauthenticated, remote attacker to redirect a user to an untrusted web page, bypassing the warning mechanism that should prompt the user before the redirection. This vulnerability is due to improper inpu...

Cisco Webex Teams 安全漏洞

Cisco Webex Teams is a comprehensive communications application designed to provide you with all the necessary tools and the right environment to enhance team collaboration. A shared file manipulation vulnerability exists in versions prior to Cisco Webex Teams 40.12.0.17293. The vulnerability ste...

Cisco Webex Meetings 输入验证错误漏洞

Cisco Webex Meetings provides affordable enterprise virtual meeting solutions. An open redirect vulnerability exists in the Web management interface of Cisco Webex Meetings. The vulnerability stems from improper validation of the input of URL parameters in an HTTP request. An attacker could explo...

Cisco Webex Meetings Security Vulnerability

Cisco Webex Meetings is a video conferencing solution from Cisco. A security vulnerability exists in Cisco Webex Meetings and Cisco Webex Meetings Server, which stems from a lack of protection against brute-force breaking of host keys. An attacker could exploit the vulnerability to join Webex...

PT-2021-1765 · Cisco · Cisco Webex Meetings Server +1

Name of the Vulnerable Software and Affected Versions: Cisco Webex Meetings and Cisco Webex Meetings Server affected versions not specified Description: The issue is related to a lack of protection against brute forcing of the host key in the reclaim host role feature. This could allow a remote...

PT-2021-1708 · Cisco · Cisco Webex Meetings

Name of the Vulnerable Software and Affected Versions: Cisco Webex Meetings affected versions not specified Description: The issue is related to improper input validation of the URL parameters in an HTTP request, allowing an unauthenticated, remote attacker to redirect a user to an untrusted web...

Cisco Webex Teams Shared File Manipulation Vulnerability (cisco-sa-webex-teams-7ZMcXG99)

The version of tested product installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the cisco-sa-webex-teams-7ZMcXG99 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's...

The vulnerability of the DLL library loading mechanism of the Cisco Webex Teams software for Windows allows a malicious actor to load a malicious library into the system.

The vulnerability of the DLL library loading mechanism for Cisco Webex Teams software for Windows is related to errors in processing path handling for directories. Exploiting this vulnerability can allow an attacker to load the malicious library into memory...

Cisco Webex Meetings Information Disclosure (cisco-sa-webex-infodisc-4tvQzn4)

According to its self-reported version, Cisco Webex Meetings is affected by a information disclosure vulnerability. This vulnerability is due to insufficient protection of sensitive participant information. An unauthenticated, remote attacker could exploit this vulnerability by browsing the Webex...

The vulnerability of the software for Cisco Webex Meetings Server and Cisco Webex Meetings allows a intruder to gain unauthorized access to protected information.

The vulnerability of the user interface of Cisco Webex Meetings Server and Cisco Webex Meetings relates to insufficient validation of entered data. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

The vulnerability of Cisco Webex Meetings Server and Cisco Webex Meetings software allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the software user interfaces for Cisco Webex Meetings Server and Cisco Webex Meetings is related to improper access control. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the software for Cisco Webex Meetings Server and Cisco Webex Meetings allows a intruder to gain unauthorized access to protected information.

The vulnerability of Cisco Webex Meetings Server and Cisco Webex Meetings software relates to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the user interface of Cisco Webex Meetings software allows attackers to perform cross-site scripting attacks.

The vulnerability of the user interface of Cisco Webex Meetings software relates to the lack of measures taken to eliminate script-related tags on web pages. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

Vulnerabilities fixed in Cisco Webex and Cisco Webex Server

Vulnerabilities have been fixed in Cisco Webex Meetings and Cisco Webex Meetings Server. The vulnerabilities allow a malicious able to launch attacks that result in the following categories of damage: Cross-Site Scripting XSS. Circumvention of security measure Remote code execution User Rights...

Cisco Webex Meetings Cross-Site Scripting Vulnerability (CNVD-2020-66209)

Cisco Webex Meetings provides affordable enterprise virtual meeting solutions. A cross-site scripting vulnerability exists in the API in Cisco Webex Meetings. The vulnerability stems from improper validation of user input provided to the application programming interface API. An attacker could...

CVE-2020-3471

A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to maintain bidirectional audio despite being expelled from an active Webex session. The vulnerability is due to a synchronization issue between meeting and media services on a...

CVE-2020-3419

A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to join a Webex session without appearing on the participant list. This vulnerability is due to improper handling of authentication tokens by a vulnerable Webex site. An attacke...