CVE-2020-27126

Cisco Webex Meetings API contains an XSS vulnerability due to improper validation of user input to the API. An unauthenticated remote attacker can entice a targeted user to follow a crafted link that submits malicious input, potentially exposing browser-based information. Affected: Cisco Webex Me...

CVE-2020-27126 Cisco Webex Meetings API Cross-Site Scripting Vulnerability

A vulnerability in an API of Cisco Webex Meetings could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to improper validation of user-supplied input to an application programmatic interface API within Cisco Webex Meetings. An attacker...

CVE-2020-27126 Cisco Webex Meetings API Cross-Site Scripting Vulnerability

A vulnerability in an API of Cisco Webex Meetings could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to improper validation of user-supplied input to an application programmatic interface API within Cisco Webex Meetings. An attacker...

Cisco Webex Meetings and Cisco Webex Meetings Server Unauthorized Audio Information Exposure Vulnerability

A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to maintain bidirectional audio despite being expelled from an active Webex session. The vulnerability is due to a synchronization issue between meeting and media services on a...

Cisco Webex Meetings and Cisco Webex Meetings Server Ghost Join Vulnerability

A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to join a Webex session without appearing on the participant list. This vulnerability is due to improper handling of authentication tokens by a vulnerable Webex site. An attacke...

Cisco Webex Meetings and Cisco Webex Meetings Server Information Disclosure Vulnerability

A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to view sensitive information from the meeting room lobby. This vulnerability is due to insufficient protection of sensitive participant information. An attacker could exploit...

CVE-2020-27126

A vulnerability in an API of Cisco Webex Meetings could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to improper validation of user-supplied input to an application programmatic interface API within Cisco Webex Meetings. An attacker...

Cisco Webex Meetings API Cross-Site Scripting Vulnerability

A vulnerability in an API of Cisco Webex Meetings could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to improper validation of user-supplied input to an application programmatic interface API within Cisco Webex Meetings. An attacker...

Cisco Webex Meetings Security Vulnerability

Cisco Webex Meetings is a videoconferencing solution from Cisco. A security vulnerability exists in Cisco Webex Meetings and Cisco Webex Meetings Server, which stems from the mishandling of authentication tokens on the Webex website. An attacker could exploit the vulnerability to join a Webex...

Cisco Webex Meetings Input Validation Error Vulnerability

Cisco Webex Meetings is a video conferencing solution from Cisco. A security vulnerability exists in Cisco Webex Meetings and Cisco Webex Meetings Server that results from inadequate protection of sensitive participant information. An attacker could exploit the vulnerability to view sensitive...

Cisco Webex Meetings Input Validation Error Vulnerability

Cisco Webex Meetings is a videoconferencing solution from Cisco. A security vulnerability exists in Cisco Webex Meetings and Cisco Webex Meetings Server, which results from synchronization issues between meetings and media services on vulnerable Webex websites. An attacker could exploit the...

Cisco Webex Meetings 跨站脚本漏洞

Cisco Webex Meetings provides affordable enterprise virtual meeting solutions. A cross-site scripting vulnerability exists in the API in Cisco Webex Meetings. The vulnerability stems from improper validation of user input provided to the application programming interface API. An attacker could...

The vulnerability in the web interface of the Cisco Webex Teams collaboration software allows a perpetrator to carry out cross-site scripting attacks.

The vulnerability of the Cisco Webex Teams software interface relates to the failure to remove script-related HTML tags from web pages. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

The vulnerability of the Cisco Webex Network Recording Player and Cisco Webex Player for Windows operating systems arises from the operation beyond buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Cisco Webex Network Recording Player and Cisco Webex Player for Windows operating systems is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the Cisco Webex Meetings Desktop App’s software lies in the incorrect path name limitation, which allows a malicious actor to execute arbitrary code.

The vulnerability of the Cisco Webex Meetings Desktop App software-related web conferencing software is related to an incorrect limitation on the path to the directory. Exploiting this vulnerability could allow a attacker to execute arbitrary code...

The vulnerability of the Cisco Webex Network Recording Player and Cisco Webex Player for Windows operating systems arises from the operation beyond buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Cisco Webex Network Recording Player and Cisco Webex Player for Windows operating systems is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the Cisco Webex Network Recording Player and Cisco Webex Player for Windows operating systems arises from the operation beyond buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Cisco Webex Network Recording Player and Cisco Webex Player for Windows operating systems is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

Cisco Webex Meetings Arbitrary Code Execution Vulnerabilities (cisco-sa-webex-nbr-NOS6FQ24) (deprecated)

This plugin has been deprecated as it's a duplicate of cisco-sa-webex-nbr-NOS6FQ24.nasl plugin ID 142880 C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2021/03/19. Deprecated by cisco-sa-webex-nbr-NOS6FQ24.nasl include'compat.inc'; if description scriptid142879; scriptversion"1.7";...

Cisco Webex Network Recording Player and Cisco Webex Player Arbitrary Code Execution Vulnerabilities (cisco-sa-webex-nbr-NOS6FQ24)

According to its self-reported version, Cisco Webex Network Recording Player for Windows and Cisco Webex player for Windows are affected by multiple arbitrary code execution vulnerabilities due to insufficient validation of certain elements of a Webex recording that is stored in the Advanced...

Cisco WebEx Network Recording Player ARF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Cisco WebEx Network Recording Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...